From 991b7d4dc227109665beef6b93b4b51ecf84b8ca Mon Sep 17 00:00:00 2001
From: pocj8ur4in <pocj8ur4in@gmail.com>
Date: Sat, 31 Jan 2026 21:07:44 +0900
Subject: [PATCH] Rollback setDefaultRolePrefix() call

- preserve setDefaultRolePrefix() in getRootObject()

Signed-off-by: pocj8ur4in <pocj8ur4in@gmail.com>
---
 .../repository/query/SecurityEvaluationContextExtension.java  | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/data/src/main/java/org/springframework/security/data/repository/query/SecurityEvaluationContextExtension.java b/data/src/main/java/org/springframework/security/data/repository/query/SecurityEvaluationContextExtension.java
index 3e39ae4fde..4d3785d4ca 100644
--- a/data/src/main/java/org/springframework/security/data/repository/query/SecurityEvaluationContextExtension.java
+++ b/data/src/main/java/org/springframework/security/data/repository/query/SecurityEvaluationContextExtension.java
@@ -134,6 +134,10 @@ public class SecurityEvaluationContextExtension implements EvaluationContextExte
 		};
 		root.setAuthorizationManagerFactory(this.authorizationManagerFactory);
 		root.setPermissionEvaluator(this.permissionEvaluator);
+		if (!DEFAULT_ROLE_PREFIX.equals(this.defaultRolePrefix)) {
+			// Ensure SecurityExpressionRoot can strip the custom role prefix
+			root.setDefaultRolePrefix(this.defaultRolePrefix);
+		}
 		return root;
 	}