Does web.xml security give you the functionality you want? If so, then go ahead and use it. JBoss makes it really easy to work with. The problem is that the functionality just isn't very advanced. If you can wait a bit longer for the Seam security features to be completed, I think you'll find you'll be able to apply much more interesting security policies to your application. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4006561#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...