Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

SEC-1287: Regression with fix SEC-1022 - cannot register custom permissions w/BasicLookupStrategy #1512

spring-issuemaster opened this Issue Nov 6, 2009 · 3 comments


None yet
1 participant

Peter Mularien (Migrated from SEC-1287) said:

With the fix for SEC-1002 in 3.0RC1 and the removal of the static methods in BasePermission, unfortunately it is now impossible to use BasicLookupStrategy with custom permissions. This is because the PermissionFactory member of BasicLookupStrategy is private, with no accessor and no setter or constructor injection possible. While this wasn't available in prior versions of 3.0 either, at least in prior versions you could use the static methods to register permissions.

Can you expose the PermissionFactory member on BasicLookupStrategy, either through an overloaded constructor or setter?

Peter Mularien said:

I wish I could edit bugs in Spring JIRA :)

The linked bug in the description -- SEC-1002 -- is the correct bug number. The bug reference in the title is incorrect.

Peter Mularien said:

Actually, I was right the first time. After reviewing the diffs for SEC-1022 (which removed the static methods), that was the source of this bug.

Luke Taylor said:

Thanks Peter. I've added a setter method to the class.

@spring-issuemaster spring-issuemaster added this to the 3.0.0.RC2 milestone Feb 5, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment