From e3f8d3bea1ab260f4654355dac47e2084ac2c212 Mon Sep 17 00:00:00 2001
From: Richard Millet <richard.millet@berkeley.edu>
Date: Thu, 28 Oct 2010 08:24:18 +0000
Subject: [PATCH] CSPACE-3070: Spring sid entries were not using "ROLE_"
 prefixed role names.

---
 .../services/authorization/storage/AuthorizationDelegate.java   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/services/authorization-mgt/service/src/main/java/org/collectionspace/services/authorization/storage/AuthorizationDelegate.java b/services/authorization-mgt/service/src/main/java/org/collectionspace/services/authorization/storage/AuthorizationDelegate.java
index 87519d436..c03d07099 100644
--- a/services/authorization-mgt/service/src/main/java/org/collectionspace/services/authorization/storage/AuthorizationDelegate.java
+++ b/services/authorization-mgt/service/src/main/java/org/collectionspace/services/authorization/storage/AuthorizationDelegate.java
@@ -87,7 +87,7 @@ public class AuthorizationDelegate {
                 logger.error(msg);
                 throw new DocumentNotFoundException(msg);
             }
-            String[] roles = {rv.getRoleName()};
+            String[] roles = {r.getRoleName()}; //this ensures we're getting the "ROLE" prefix/qualified name
             for (PermissionValue pv : pr.getPermissions()) {
                 Permission p = getPermission(pv.getPermissionId());
                 if (p == null) {
-- 
2.47.3