Can the drools security rules be used in conjunction with the default identity implementation?
In other words can i declare both:
<security:identity authenticate-method="#{authenticator.authenticate}"/>
<drools:rule-base name="securityRules"> <drools:rule-files> <value>/META-INF/security.drl</value> </drools:rule-files> </drools:rule-base>
Yes, the RuleBasedIdentity is just a subclass of Identity, so all the basic functionality remains the same.