Jim is currently looking at Elytron integration in RESTEasy and he has
just brought to my attention an interesting topic. The RESTEasy Oauth2
integration was initially meant for AS 7 and not updated afterwards. It
also (partially) overlaps with KeyCloak these days.
So I'm wondering what we really want to do with it; it might make sense
to deprecate (part of) it and properly integration KeyCloak instead
(documenting, etc.). Any thought?