Hi Rich DiCroce,
The method
void revokePermission(IdentityType assignee, Class<?> resourceclass, String operation)
expects an operation. Not an identifier.
If you want to revoke permissions for a specific resource based on the id, you should use:
void revokePermission(IdentityType assignee, Object resource, String operation)
Basically, when using the latter PL tries to resolve an identifier for your instance. If it is a @Entity, it will consider the @Id field.
I think the same thing happens with the listPermission that you mentioned.
For last, take a look at this test case [1]. Maybe you can find examples for your usage of grantPermission and clearPermission variants.
Regards.
|