An update as to where we are with this discussion.....
So far, there has been overwhelming support among the users list
participants for including the Java EE Security API in the
Web Profile.
As of today, however, the Java EE Security API depends on JASPIC,
which we would therefore also need to include in the Web Profile,
which has raised some concerns.
In the absence of any further feedback from members of the Platform
Expert Group, we plan to include both the Java EE Security API
and JASPIC in the Web Profile.
Please let us know asap if you object.
thanks,
-Linda