Home/ Questions/Q 8899147
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-15T00:47:23+00:00

ACL_SID table that is used in Spring security ACL contains name of the user

  • 0

ACL_SID table that is used in Spring security ACL contains name of the user as one of the columns. I am wondering about the best way to modify this value. This is necessary for example when a user name corresponding to an already existing user is changed. It doesn’t look like JdbcMutableAclService supports this functionality. Any help is appreciated.

Thanks,
Raghu

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You can extend JdbcMutableAclService class and add new method that is needed.

    In your constructor you can create instance of JdbcTemplate:

    public YourClassName(DataSource dataSource, LookupStrategy lookupStrategy, AclCache aclCache) {
    super(dataSource, lookupStrategy, aclCache);
    this.jdbcTemplate = new JdbcTemplate(dataSource);
    this.aclCache = aclCache; 
}

    Now you can use that JdbcTemplate in your new method to update SID’s username.

    jdbcTemplate.update("update acl_sid set sid = ? where sid = ?", newUsername, oldUsername);

    Remember about unique constraint

    constraint unique_uk_1 unique(sid,principal)

    JdbcTemplate can throw DataAccessException in case of failure. For instance DataIntegrityViolationException is thrown when SID with that name already exists in your database.

    Also remember about transactions.

    As you can see Spring Security is using AclCache to perform more efficiently. You’d better evict everything from that cache on every username update. You can use void clearCache(); method for that. AclCache is a private member of your superclass so you need to remember that instance inside your class (look at suggested constructor’s body).

    • 0