<?xml version='1.0'?>
<!DOCTYPE policy PUBLIC
"-//JBoss//DTD JBOSS Security Config 3.0//EN"
<policy>
<application-policy name = "AMRealm">
<authentication>
flag = "required">
<module-option name = "unauthenticatedIdentity">anonymous</module-option>
</login-module>
<!-- Any existing security context will be restored on logout -->
<module-option name="restore-login-identity">true</module-option>
</login-module>
</authentication>
</application-policy>
</policy>