This shouldn't be too hard, all you should need to do is create a "securityRules" RuleBase object containing your security rules (in application scope), then create an Identity instance which you can use to invoke your unit tests against. There's plenty of useful classes in the org.jboss.seam.mock package for creating the mock scopes that you'll need - use the Lifecycle class to set these up. I should probably add a section on unit testing to the security chapter of the docs, with some code samples. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4010374#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...