Can anyone please guide me how to do fine grained authorization of the content of a portlet. I mean certain portions within the portlet should be visible to certain users/roles. I would like to have this authorization logic externalized rather than embed within portlet.

Thanks in advance.