It looks like the secured tags in my webflows only function properly when the role name has the "ROLE_" prefix.

If I use this, I am let through correctly:

Code:
<secured attributes="ROLE_SUPER"/>
If I use this, I am denied whether I have the role or not:

Code:
<secured attributes="SUPER"/>
Is this intentional or has anyone else had this problem?

Im using webflows: 2.2.1 and spring security 3.1.3. The spring security authorize tags in my JSPs have no problem using either style of role name.