Certain users would like to apply fine-grained access control to the JMX Operations in the JMX Console. Currently we have support for applying authentication/access control at the URI level as defined by the servlet specification.

A servlet filter that allows configurable roles for the various jmx coarse grained operations (updateAttributes, invokeOp). If the user requires deeper access control, then he should be able to plug in an authorization delegate (which will have priority in making the access control decisions).