In that case you could add a permission 'useraccountdata:write:self' to your application and whoever does not own 'any' or 'self' may not change any data. You could also include 'useraccountdata:write:team' or something similar for future use.
-- View this message in context: http://shiro-user.582556.n2.nabble.com/How-would-i-configure-that-a-user-is-only-allowed-to-change-it-s-own-account-data-tp7579208p7579214.html Sent from the Shiro User mailing list archive at Nabble.com.
