From 97fd3d7c849f007f0c12ea1b2204903216798bb2 Mon Sep 17 00:00:00 2001
From: Kristine Jetzke <kristine.jetzke@kreuzwerker.de>
Date: Thu, 31 Oct 2019 22:06:44 +0100
Subject: [PATCH] Clarify usage of hasAnyRole and hasAnyAuthority

---
 .../authorization/expression-based.adoc        | 18 ++++++++++++++----
 1 file changed, 14 insertions(+), 4 deletions(-)

diff --git a/docs/manual/src/docs/asciidoc/_includes/servlet/authorization/expression-based.adoc b/docs/manual/src/docs/asciidoc/_includes/servlet/authorization/expression-based.adoc
index e2308674e1..c0f58466a1 100644
--- a/docs/manual/src/docs/asciidoc/_includes/servlet/authorization/expression-based.adoc
+++ b/docs/manual/src/docs/asciidoc/_includes/servlet/authorization/expression-based.adoc
@@ -21,22 +21,32 @@ This provides some common expressions which are available in both web and method
 |===
 | Expression | Description
 
-| `hasRole([role])`
+| `hasRole(String role)`
 | Returns `true` if the current principal has the specified role.
+
+For example, `hasRole('admin')`
+
 By default if the supplied role does not start with 'ROLE_' it will be added.
 This can be customized by modifying the `defaultRolePrefix` on `DefaultWebSecurityExpressionHandler`.
 
-| `hasAnyRole([role1,role2])`
+| `hasAnyRole(String... roles)`
 | Returns `true` if the current principal has any of the supplied roles (given as a comma-separated list of strings).
+
+For example, `hasAnyRole('admin', 'user')`
+
 By default if the supplied role does not start with 'ROLE_' it will be added.
 This can be customized by modifying the `defaultRolePrefix` on `DefaultWebSecurityExpressionHandler`.
 
-| `hasAuthority([authority])`
+| `hasAuthority(String authority)`
 | Returns `true` if the current principal has the specified authority.
 
-| `hasAnyAuthority([authority1,authority2])`
+For example, `hasAuthority('read')`
+
+| `hasAnyAuthority(String... authorities)`
 | Returns `true` if the current principal has any of the supplied authorities (given as a comma-separated list of strings)
 
+For example, `hasAnyAuthority('read', 'write')`
+
 | `principal`
 | Allows direct access to the principal object representing the current user