You would need to assign "job:view" to the user, and then a check for
"job:view:1" would succeed. For example:
if (subject.isPermitted("job:view:1")) {
//show job 1.
}
Because "job:view" _implies_ "job:view:1"
The general idea is that you typically assign more general scoped
permissions and at runtime, perform instance-specific checks.
Note that in WildcardPermission syntax job:view is equivalent to
job:view:*, so you could technically assign either.
Does that help?
Cheers,
--
Les Hazlewood
Founder, Katasoft, Inc.
Application Security Products & Professional Apache Shiro Support and Training:
http://www.katasoft.com
