I was given the answer to the above question. One has to annotate the parameter with @P("id")
as shown below:
@PreAuthorize("isAuthenticated() AND hasPermission(#id, 'CurriculumService:findCurriculumIsAllowed')")
public Curriculum CurriculumServiceImpl.findCurriculum(@P("id") Long id) {
return curriculumRepository.findOne(id);
}