* local data mapping by config: default values to prevent 'source attribute not found' exception

* fixed timing issue with user identifier in abstractauthorizationservice (not set in user session when autowiring takes place)
* authorization expression config node definitions can now be requested from abstractauthorizationprovder
* empty function for expression language