I Googled for this but could find anything.
I need to create a Java EE web application that supports role based security. Thus users' access to forms and data will be determined by the role assigned to them.
What is the best practices for implementing this? Can one develop the app and then later add the security or should the app be designed from the start with the security integrated?
Any help and or links will be most appreciated.
Below is the security guide for your reference:
For EAP 6.4 have a look on the following:
Security Architecture - Red Hat Customer Portal
For EAP 7.0 have a look on the following:
Retrieving data ...