Add a way to get the domain for an identity. The rationale is, users can already acquire the current security domain via a global context-sensitive method, if they have the appropriate SM permission.

The method could be on SecurityDomain in order to keep it local to the getCurrent() method as its behavior and security requirements are similar.