Hi Mark, yes and no:
@ApplicationScoped class MyConfig { void configureSecu(@Observes @Initialized(ApplicationScoped.class) final Object whatever, final CdiMetricsEndpoint endpoint) { endpoint.setSecurityValidator(....); } } That said it is more intended to be configured with geronimo.metrics.* config entries. We can surely add more - default is for prometheus and dev envs IIRC. Romain Manni-Bucau @rmannibucau <https://twitter.com/rmannibucau> | Blog <https://rmannibucau.metawerx.net/> | Old Blog <http://rmannibucau.wordpress.com> | Github <https://github.com/rmannibucau> | LinkedIn <https://www.linkedin.com/in/rmannibucau> | Book <https://www.packtpub.com/application-development/java-ee-8-high-performance> Le mer. 4 sept. 2019 à 15:08, Mark Struberg <strub...@yahoo.de> a écrit : > hi folks! > > Right now the SecurityValidator in metrics cannot be switched easily, > right? > Wouldn't it be better to simply inject it? Or at least have a protected > method getSecurityValidator() ? > > LieGrue, > strub > >