Assuming I have an app with three entities:
Where image is the permission target and the recipient can be a person (represented as 'User'), a recipient can also be an automated system (represented as 'Application').
As far as I understood, I can only have two type of recipients (users & roles), is that so?
The current JPA permission implementation won't support different type of recipients?
While the permission API allows for it (a Principal can be anything really), JpaIdentityStore in practice only supports user or role recipients. You would need to extend it to allow for other recipient types.