Unsure of the priority of this. Do we need to even apply the work around now, or just note that the legacy REST app won't be fixed until we fix the SolrLoggerUsageEventListener.
ACTION: Talk to Terry Brady about this. If it's a high priority, we can just merge 1930. Otherwise, we should find someone to dig in a bit more and just fix the issues with SolrLoggerUsageEventListener.
Again, an early version of this would be great to get into the codebase soon. Other features will surely want to use Spring Security, if we can get this even minimally working. (e.g. the Configuration endpoint work in https://github.com/DSpace/DSpace/pull/1928 would likely benefit heavily from Spring Security)
ACTION (Art): will ping Tom Desair on this to get current status.