jsecurity VS acegi

Dear All,

I've been planning to use either one of these 2 security options.   But I haven't decide it yet because these each one has 1 feature I like.  I plan to use it in intranet site where user can create and define its own security policy at runtime.  

Frankly speaking I lean more towards ACEGI on this one because user and security are created at runtime(You don't need SecurityFilter...), but I really like Jsecurity plugin taglib where you can specify fine grained view down to each field.

I've planning to write separate domain model to complement either these security.  There'll be simple management screen where it list all domain and its fields with checkbox for R or W and store it to database.  Also some taglib more or less similar to jsecurity.  

However, I rather not implementing it if there is existing capabilities already :)

Appreciate other input or correction from more experience developer on this.   Thanks in advance.


Best Regards,

Joni Sudjito