Hi All, Shouldn't the existing method be changed to the following?
public boolean authorize(AuthenticatedUser user, List<Object> resource, Permission permission); // checks the authority for a given user for a given resource for a given permission The existing method: public EnumSet<Permission> authorize(AuthenticatedUser user, List<Object> resource); I noticed that we retrieved all permissions and checks 'perms.contains(perm)' ... May permissions be cached at later? Thanks, Indika