Description: The current documentation for Jolokia security is incomplete and does not cover certain aspects such as IP-based restrictions, <allow> and <deny> sections for each command and selective enablement of forbidden commands for specific MBeans. The documentation also lacks information on global command restrictions when the <commands> section is missing.

We need to update the Jolokia security documentation to cover these aspects in detail. This will help users configure Jolokia security more effectively.
 
I tried configuring the remote rule and it worked as expected:

    <remote>
      <host>127.0.0.1</host>
    </remote> 

{"error_type":"java.lang.Exception","error":"java.lang.Exception : No access from client 1.2.3.4 allowed","status":403}