Thanks both for your answers : @Kalle : I did not understood if RequiresAssociation could work without something like JPA or Hibernate to manage permissions on entities ? In my case, we are using myBatis which is a low level system.
@Jared : I was thinking about overriding the wildcard system with special keywords like you propose. I think that is a great idea. I am going to try you solution. Thanks for the code ! Nicolas. 2010/12/23 Kalle Korhonen <[email protected]> > On Thu, Dec 23, 2010 at 9:33 AM, Nicolas Antoniazzi > <[email protected]> wrote: > > Thanks Jared, > > It's interresting. This was my first idea, but how to handle the fact > that > > severals users have access to the same permission on the item. > > 1 - user that is the original creator of document can delete it (ok with > > your code) > > I made a proposal for simplifying these types of permissions: > http://www.mail-archive.com/[email protected]/msg00343.html, > @RequiresAssociation will likely find its way to Shiro core at some > point. > > Kalle >
