Hello, Is there a guide/reference available that outlines "best practices" on how to configure TomEE securely?
I have used Tomcat in the past, and am familiar with steps such as those described in https://tomcat.apache.org/tomcat-8.0-doc/security-howto.html , but I have not worked with TomEE before. I need to ensure that no ports/services have been exposed unnecessarily. I also need to ensure that there are no servlets / JSP's mapped and accessible by default. Appreciate any help/guidance you might have, Thanks!
