Hi, I'm trying to set up a SecurityContext that gets set by a client and passed transparently (similar to the Xaction context) over to the server which does the appropriate authorization before the server side object of interest is called (be it a EJB, servlet, etc.). Any support in JBOSS for this? I'd prefer not to have an explicit parameter in all of my API calls.