@Override public ValidateResult accpept( final AuthContext authContext, final Module module, final ModuleEntry moduleEntry) { final Long roleId = moduleEntry.getRoleId(); if (roleId == null) { return ValidateResult.ALL_CONTAINING; } final Collection<Role> userPermissions = authContext.getUser().getRoles(); if (userPermissions == null || userPermissions.isEmpty()) { return ValidateResult.NOT_CONTAINING; } if (findRole(userPermissions, roleId)) { return ValidateResult.EXACT_CONTAINING; } else { // 用户的Role不包含ModuleEntry指定的roleId return ValidateResult.NOT_CONTAINING; } }