"mgrouch" wrote : Upon user login we need to load user preferences, accounts, permissions etc (user specific information). This logically should be Session scope. | I though more proper way of doing it is to create a bean which | extends identity. I recommend that you do this kind of stuff in your authenticator class, rather than extending Identity to do it. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4067615#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...