I've a model class supported by Hibernate/JPA with row level security and a PagingAndSortingRepository interface for this model. I want to call findAll(pageable) on this repository and get a list of only those model instances to which the current principal has read access to.
The method should not be unnecessarily slow or waste resources. This might mean that the ACL filtering should be done by the database.
All features of Spring Security ACL should still be supported, in particular hierarchic ACL. The later should be possible with recursive query evaluation.
Thomas Koch (Migrated from SEC-2379) said:
I've a model class supported by Hibernate/JPA with row level security and a PagingAndSortingRepository interface for this model. I want to call findAll(pageable) on this repository and get a list of only those model instances to which the current principal has read access to.
The method should not be unnecessarily slow or waste resources. This might mean that the ACL filtering should be done by the database.
All features of Spring Security ACL should still be supported, in particular hierarchic ACL. The later should be possible with recursive query evaluation.