When utilizing ArtemisRbacMBeanServerBuilder for Role-Based Access Control (RBAC) on management operations, the web console fails to hide menu items for unauthorized actions.

For instance, a user without the amq role can still see the "Delete Address" menu item, even when the following security configuration is applied to restrict access:

<security-setting match="mops.broker.deleteAddress">
   <permission type="edit" roles="amq"/>
</security-setting>

The web console should dynamically filter the user interface. If a user lacks the required permission for a specific management operation (e.g., deleteAddress), the corresponding menu item should be hidden from their view.