Taylor Mathewson (Migrated from SEC-1172) said:
The constructor for AclEntryAfterInvocationProvider hard codes the config attribute as AFTER_ACL_READ.
There should probably be an additional constructor allowing client code to supply a value.
Luke Taylor said:
You can modify the default using the property "processConfigAttribute". So I don't think this is really necessary. This class will also be largely deprecated in favour of an expression-based approach in Spring Security 3.
Taylor Mathewson said:
The setter is protected.
Ah yes, well spotted :). I've added an extra constructor as per the original request.