Luke Taylor(Migrated from SEC-1022) said:
This has caused some problems and reduces the pluggability of Permission generation strategies, so we’ve agreed it should be modified in 2.5. PermissionFactory should probably also be modified to contain more of the methods that are currently static, allowing implementations to be called when evaluating expressions, for example (see PermissionEvaluator, AclPermissionEvaluator).
Thomas Champagne said:
You can use the spring util namespace :
Luke Taylor said:
I've removed the use of static initialization from the permission classes. Instead of invoking static methods on BasePermission in order to convert masks/names to Permissions, classes should use a PermissionFactory. DefaultPermissionFactory is used by default and can have custom Permissions injected. By default it introspects BasePermission and registers its static fields by name.
This issue supersedes #1253