Red Hat

What is PicketLink ?

PicketLink is an open source project for simplified security and identity management for Java Applications.

Why the name "PicketLink" ?

A Picket Fence is a secure system of pickets joined together via some type of links. Basically, the Pickets by themselves do not offer any security. But when they are brought together by linking them, they provide the necessary security.

This project is that link for other security systems or systems to bring together or join, to finally provide the necessary secure system.

Features Highlight

Exhaustive Features

Robust IDM feature

Model Identies and Attributes.

Build model from various data sources such as Databases, LDAP, File System and mix-n-match!

Simple API for Users, Roles, Groups and Attributes.

Suitable for JavaEE Applications

Use CDI based application programming.

Robust Authentication Support

Application developers have greater control for authentication. You use the IDM as the foundation for your authentication needs.


Robust Permission Model

Extensive Access Control/Authorization Support

PicketLink has a permission model that allows you to have robust access control for your Java Applications.

Permission implementations include ACL and Drools Rules based implementations.

Plug in your own access control

API allows custom authorization implementations.

Easy migration to a fine grained access control model using XACML.


Single Sign On

SAML Web Browser Profile Single Sign-On

PicketLink provides SSO using SAML v1.1 and v2.0

Parsers and Object Model available to build robust SAML enabled applications.

Trust Capabilities

PicketLink includes login modules for building trusted heterogeneous applications using different application servers including Wildfly Application Server.


administration Social Login

Social Media Based Login

PicketLink allows you to incorporate Social Login into your applications. You can build applications that allow sign in using Facebook, Google and Twitter.

Comming soon !


compliant Compliance To Standards

Java EE

PicketLink allows JavaEE applications to incorporate robust security. JavaEE constructs are supported.

Open Standards

PicketLink supports SAML, XACML and WS-Trust.


testable Easily Testable


From the very start, PicketLink has been designed with testability in mind. The secret to that fidelity is Arquillian a component model for integration tests that execute inside the real runtime environment.

Smarter Development

Using Arquillian for development gives you an extremely fast change, compile, test cycle for any component model. This strategy allows you to take Test Driven Development (TDD) further than ever before.



Plenty of Quickstarts and tutorials

Security for your Java Applications does not have to be scary.

PicketLink provides lots of quickstarts to get you started quickly.

Browseable and PDF Documentation

Documentation is available here.


Open Source

Community Powered Innovation

Your contributions, your feedback!

PicketLink has greatly benefited from community feedback, contributions and patches.

back to top