SEC-1523: Outdated documentation about the PermissionEvaluator #1764

spring-issuemaster opened this Issue Jul 26, 2010 · 2 comments


None yet

1 participant


christophe blin (Migrated from SEC-1523) said:

From the documentation 15.3.2 Built-In Expressions :
Where myPermissionEvaluator is the bean which implements PermissionEvaluator. Usually this will be the implementation from the ACL module which is called AclPermissionEvaluator. See the "Contacts" sample application configuration for more details.

Looking into this sample, I see nothing dealing with that ...


Luke Taylor said:

Not sure where you looked, but the "permissionEvaluator" bean is clearly defined with type AclPermissionEvaluator in the security application context file.


christophe blin said:

spring-security-3.0.3.RELEASE, dist directory, unzip the jar named spring-security-samples-contacts-3.0.3.RELEASE-sources

neither the applicationContext-common-authorization.xml nor the applicationContext-common-business.xml contains AclPermissionEvaluator

@spring-issuemaster spring-issuemaster added this to the 3.1.0.M1 milestone Feb 5, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment