Re: jsecurity VS acegi

I just having problem with defining all securityFilter and assigning to certain role in advance.  I rather like my customer to define its own role and user.  Because it seems to me that if I need to add new security permision into the filter I need to repackage my application to war file.  But correct me if I'm wrong on this.

It's like what had shown in ACEGI tutorial where you can create new role, and assign this role permision(such as restrict the role's url).  

Best Regards,

J