On 31.05.11 16:23, "Angela Schreiber" <[email protected]> wrote: >I would rather use the PrincipalManager for examples as this clarifies >the relation between principals and access control. Retrieving the >Principal from a given User object is of course valid... but in order >to have a generic example it is important IMO to clarify that User >Management isn't prerequisite for access control at all. Similarly >an ACE might be defined for a Principal that isn't known as User to >the repository but just exposed by the PrincipalManager (by means of >a custom PrincipalProvider).
Good point, i was partly confused by that separation as well. I clarified it in the example code, providing both ways and explaining why the separation is needed. Regards, Alex -- Alexander Klimetschek Developer // Adobe (Day) // Berlin - Basel
