Spring security, LDAP and SSO

I am trying to create an application where login is done using SSIM. After logging in, I need to get the user information (e.g. roles, permissions) to log in the user from LDAP and enable the session.

How do I use spring MVC to provide REST services. I want my rest services to only be available for certain roles (e.g. dispatcher / administrator, etc.). Also the UI will show / hide the page based roles.

I want to know what is the best way to achieve the above.

Please note that I am using spring MVC on WAS7.