The PicketLink Permission API functionality is extended with the @RequiresPermission annotation. You can easily restrict access to your beans and methods based on the permissions granted for an user given a specific resource and operation.

​@RequiresPermission(resource = "user_profile", operation = "read")
​public javax.ws.rs.core.Response getUserProfile() {
​	
​}