Architecture and implementation of security on GIS data as provided in Geomajas. Details are given about design considerations, choices made (including why) and ways to prevent credential leakage. We will also tackle how this can be integrated with external security systems incl. industry standard solutions like LDAP and SSO. Finally we'll see different security configurations at work via real world examples.