I tried your solution and it does not work for me. The SQL looks as follows:
SELECT LIMIT 0 50 t1.ID AS a1, t1.CREATE_TS AS a2, t1.CREATED_BY AS a3, t1.DELETE_TS AS a4, t1.DELETED_BY AS a5, t1.NAME AS a6, t1.SOURCE_NUMBER AS a7, t1.TARGET_NUMBER AS a8, t1.UPDATE_TS AS a9, t1.UPDATED_BY AS a10, t1.VERSION AS a11
FROM SERVICETEST_AUDIT t1 LEFT OUTER JOIN SERVICETEST_AUDIT_USER_LINK t2 ON (t2.AUDIT_ID = t1.ID)
JOIN SEC_USER t0 ON (t0.ID = t2.USER_ID) WHERE
((EXISTS (SELECT DISTINCT 1 FROM SEC_USER t4, SERVICETEST_AUDIT_USER_LINK t3
WHERE ((((t3.AUDIT_ID = t1.ID) AND (t4.ID = t3.USER_ID)) AND (t4.ID = 'e05dbdb2-8463-eccb-cc68-49bea397afbe')) AND (t4.DELETE_TS IS NULL))) OR (t1.NAME = 'test')) AND (t1.DELETE_TS IS NULL))
But if it is a bug, it is ok, I don’t need a solution right now. I’m currently just trying out the features of the framework and I just wanted to understand how the access groups work and if they are capable of our business scenarios, which they seem to be.
Thanks for your help!