A good suggestion. In practical terms, this would probably work just fine. I'd prefer to allow for new roles to be defined (as different combinations of existing permissions) order without needing to change the application code.
But I could see how that could work if I could guarantee that the roles were fixed. -- View this message in context: http://shiro-user.582556.n2.nabble.com/Principal-added-by-AuthorizingRealm-tp7581171p7581177.html Sent from the Shiro User mailing list archive at Nabble.com.
