RBAC, Security subsystem contains attributes with capabilities which don't set access-constraint. ------------------------------------------------------------------------------------------------- Key: WFLY-8973 URL: https://issues.jboss.org/browse/WFLY-8973 Project: WildFly Issue Type: Bug Components: Domain Management, Security Affects Versions: 11.0.0.Alpha1 Reporter: Stefan Guilhen Assignee: Stefan Guilhen Priority: Critical Security subsystem contains attributes with capabilities which don't set access-constraint. How to reproduce: {code} /subsystem=security:read-resource-description(recursive=true) {code} Resources elytron-realm, elytron-key-store, elytron-trust-store, elytron-key-manager and elytron-trust-manager all contain attributes that reference a JAAS security domain and that are missing the SECURITY_DOMAIN_REF constraint.