I've been experimenting with the new ACL code in 0.6,
I'm starting this topic to kind of explore the best practices for ACL usage, because the documentation only contains a simple reference to wiring up the AclManager to a Voter. It doesn't give much beyond that.
What I have working so far is using the JdbcDaoImpl to retrieve a arry of ACLs for a domain/authorization object. A code snippet from one of my JUnit tests follows:
But now what I want to do is actually have a Voter work on it. Is there a concrete implementation of a Voter I can use in 0.6, or do I need to write my own.. and if I do write my own, can you give me a guideline on what I should be doing. Should I be passing in the AclEntry array as part of the ConfigAttributeDefinition object? Then having the voter iterate through the AclEntry array to find a bit mask that gives the level of permission requried to return a 'yes' vote?
AclEntry aclEntries = am.getAcls(testTopic, auth);
Am I missing anything else here?