Hello, I'm using Karaf Service Guard to centralize authc/authz between karaf commands and my REST interface. Everything is working an expected, however, using a role with a colon in it is not matching.
On the REST side I use Apache Shiro and I have realms that authenticate to some backend systems who set roles like "group:blah". I convert these to Karaf JAAS RolePrincipal which works for simple names like "blah". I have a CXF Interceptor to execute REST methods inside a Subject.doAs for my DS injected service. However, in the service acl when I have something like this it fails: service.guard = (objectClass=com.example.MyInterface) * = * myMethod = admin, viewer, group:blah -- Chaz
