Based on
org.springframework.security.access.vote.RoleVoter. If Authentication has
org.openl.rules.security.Privileges#ADMIN authority it will get
access even if it is not specified explicitly.
Votes if any
ConfigAttribute#getAttribute() starts with a prefix
indicating that it is a role. The prefix string is GROUP_
.
Abstains from voting if no configuration attribute commences with the role
prefix. Votes to grant access if there is an exact matching
org.springframework.security.core.GrantedAuthority to a ConfigAttribute
starting with the role prefix. Votes to deny access if there is no exact
matching GrantedAuthority
to a ConfigAttribute
.
All comparisons and prefixes are case sensitive.