jvrubel@redhat.com is going to look into gathering upstream content for this guide for the docs team.

Fuse 7 offers a security guide for Karaf and for CXF.

Some chapter of the Karaf security guide are not specific to Karaf and hence could be ported to a security guide for Camel 4.
Those possible chapters are:

• 1.2. Apache Camel Security
• Chapter 3. Securing the Undertow HTTP Server - although this needs to be rewritten for Spring Boot and Quarkus
• Chapter 4. Securing the Camel ActiveMQ Component would need to be rewritten for the Artemis JMS client. Potentially we can point to relevant Artemis documentation.
• Chapter 7. Integration with Red Hat Single Sign-On and specifically sub-chapter 7.1 for Spring Boot.

From briefly reviewing the CXF Security guide it seems that all of the content there may still apply. There seems to be no JAX-RS (REST) specific content.