I found in war-deployers-jboss-beans.xml this rem:
You can configure a set of authenticators keyed by http-auth method used. This
will apply the same set of authenticators across all web applications. You can
override the set of authenticators at the web application level by adding<authenticators>element to the respective jboss-web.xml