Thanks! I have looked at the doc and I must admit I haven't quite fully digested Wildcard permissions yet!
I was thinking of steering clear of instance permissions for the moment as I'm not entirely sure how to implement them without ending up with colossal permission strings for each user role. Plus I already manage user > entity associations in my app so this would presumably replace that... Still pretty hazy! CN -- View this message in context: http://shiro-user.582556.n2.nabble.com/Structuring-roles-and-permissions-tp7581233p7581235.html Sent from the Shiro User mailing list archive at Nabble.com.
