search

spring-projects / spring-security

Spring Security
http://spring.io/projects/spring-security
Apache License 2.0
8.74k stars 5.86k forks source link

SEC-2379: add support for ACL filtered SQL pagination with Hibernate or JPA #2601

Open spring-projects-issues opened 10 years ago

spring-projects-issues commented 10 years ago

Thomas Koch (Migrated from SEC-2379) said:

I've a model class supported by Hibernate/JPA with row level security and a PagingAndSortingRepository interface for this model. I want to call findAll(pageable) on this repository and get a list of only those model instances to which the current principal has read access to.

The method should not be unnecessarily slow or waste resources. This might mean that the ACL filtering should be done by the database.

All features of Spring Security ACL should still be supported, in particular hierarchic ACL. The later should be possible with recursive query evaluation.

gustavodegeus commented 8 years ago

+1

denov commented 7 years ago

+1

simiii commented 6 years ago

+1

jlchn commented 6 years ago

+1

Volodymyr128 commented 6 years ago

+1

yukinami commented 6 years ago

+1

janstadler commented 6 years ago

+1