this is not fixed:
http://opensource.atlassian.com/projects/spring/browse/SEC-99
It isn't fixed for the reasons I provided in the comment, being:
I wish there was a simple way of resolving this issue, but
whatever we do would inevitably break backward compatibility
and represent a risk as we try to get 1.0.0 out. A more
substantial refactoring of MethodDefinitionMap might be in
order, particularly if it also allowed arguments to be declared.
Heh, I thought that looked familiar. I wish I'd had time to have a
proper go at it, as I think it's definitely worth doing, but to do it
properly will be a non-trivial amount of work. At least there are
workarounds, annoying as they are.
Cheers
Tom
The information in this e-mail together with any attachments is
intended only for the person or entity to which it is addressed
and may contain confidential and/or privileged material.
Any form of review, disclosure, modification, distribution
and/or publication of this e-mail message is prohibited.
If you have received this message in error, you are asked to
inform the sender as quickly as possible and delete this message
and any copies of this message from your computer and/or your
computer system network.
___
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer