Jakarta Authorization defines a low-level SPI for authorization modules, which are repositories of permissions facilitating subject based security by determining whether a given subject has a given permission, and algorithms to transform security constraints for specific containers (such as Jakarta Servlet or Jakarta Enterprise Beans) into these permissions.
First release for Jakarta EE 8
Release for Jakarta EE 9
Release for Jakarta EE 10
Release for Jakarta EE 11