I have read about Spring ACL but it does not seem to be very

Question

0

Editorial Team

Asked: May 17, 20262026-05-17T19:31:34+00:00 2026-05-17T19:31:34+00:00

I have read about Spring ACL but it does not seem to be very

0

I have read about Spring ACL but it does not seem to be very competent. For example:

No way to list all objects of type X with permission Y
No way to automatically create the schemas for new deployments

What are you using for ACL? Is it clever to have the ACL so decoupled from the domain model?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-17T19:31:34+00:00

Editorial Team

2026-05-17T19:31:34+00:00Added an answer on May 17, 2026 at 7:31 pm

We attempted to use the Spring ACL model and found it unwieldy. We ended up rolling our own, much simpler (but also less generic), implementation and then writing the Spring Security pieces (accessDecisionManagers, Voters, Interceptors) to handle our schema. Hope that helps.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have read about Spring ACL but it does not seem to be very

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply