> Can you give me a simple example so have a point to start? Let's just assume > there are users and cars in my application how would this ACL look if some > users are only allowed to see/drive the car? > > "acl:cars:*:read" > "acl:cars:id_of_the_car:see" > "acl:cars:id_of_the_car:drive" > "acl:cars:id_of_the_car:*"
Isn't the above enough of a starting point? You can either attach the permissions directly to the user or through a role. > And wouldn't this decrase the performance dramaticly? Because I could have a > lot of cars and users? Depends on the implementation of the realm. The key is how many permissions each user has rather than how many cars or users there are. Are you after a realm implementation? Peter -- Peter Ledbrook Grails Advocate SpringSource - A Division of VMware
