Just a thought. The AfterInvocationProvider class provides a supports(Class) method that checks whether an implementation supports the current secure object invocation or not. Wouldn't make it sense to add another method supportsReturnedObject(Class) to check if the implementation actually supports the returned object instance?
This feature could be used by the AfterInvocationProviderManager to apply only "matching" AfterInvocationProviders. Otherwise you have to include this check in your decide() methods all the time. ------------------------------------------------------- This SF.Net email is sponsored by: New Crystal Reports XI. Version 11 adds new functionality designed to reduce time involved in creating, integrating, and deploying reporting solutions. Free runtime info, new features, or free trial, at: http://www.businessobjects.com/devxi/728 _______________________________________________ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
