It would be great to extend the allow deny policy for MBeans
Currently it seems that access to all MBeans is allowed if you have read access and don't specify the others explicitly.
Therefore a more strict Approach would be good without having to write your own code as outlined in the Manual:
'''It is recommended to subclass either org.jolokia.restrictor.AllowAllRestrictor or org.jolokia.restrictor.DenyAllRestrictor.'''
i.e.
deny -> all MBeans
allow -> only the MBeans specified
order -> deny,allow or allow,deny
The Reference Manual is rather unclear which restrictor is used when.
like http://httpd.apache.org/docs/2.4/mod/mod_access_compat.html#order