I'm working with an authorization compatible with Spring ACL, but which doesn't go exclusively through Spring. E.g., data fixes and mass updates are handled directly through the DB. In these...