A spring security newbie question...
I am designing a new web app that plans to use Spring Security for log-in and user to functional role mapping.
The design of this app includes a 'workspace' concept, where a user is able to switch focus between different workspaces as part of the web app GUI. The challenge is that a user's role could vary between different workspaces. For example, a user could be have an administrator role for 'workspace A' and have a simple 'user' role in 'workspace B'.
With Spring Security is it possible to change a user's role settings post log-in? If so, how?