Home/ Questions/Q 6378415
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-25T02:00:11+00:00

I want to extend the permissions given for an user to an entity. I

  • 0

I want to extend the permissions given for an user to an entity.

I am able to create ACLs via MutableAclService.

MutableAcl acl = this.mutableAclService.createAcl(new ObjectIdentityImpl(entity));            
acl.setOwner(SYSTEM_PRINCIPAL_SID);
acl.insertAce(0, permission, grantToSid, true);
this.mutableAclService.updateAcl(acl);

But I don’t know how to change ACLs. For example if a user has Read Privileges to an entity, I want to provide him additional Write Privileges.
Or give an other user the same privileges.

My first try was to invoke MutableAclService.createAcl twice, but that failed:

org.springframework.security.acls.model.AlreadyExistsException: Object identity ‘org.springframework.security.acls.domain.ObjectIdentityImpl[Type: test.Entity; Identifier: 3]’ already exists

Ok that seams to be correct, wrong way. But how to do it then? How to change the acl permissions for an entity where already some permissions are defined?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    I have had a look at the code, and it seams that there is only one relevant implementation of the ACL interface: AclImpl.

    This class implements the MutableAcl interface and is returned by the AclService functions.

    So I decided to cast the results from Acl to MutableAcl. Up to now it is working and I did not get an problem or Class cast exception:

    MutableAcl existingAcl = (MutableAcl) mutableAclService.readAclById(oid, sids);
...
mutableAclService.updateAcl(existingAcl);
    • 0