If the permissions are hierarchical, i.e. anyone who can see
paid_source and see confidential you could just index the
minimum-required clearance with the doc (think numeric codes here) and
form your fq as auth:[max_level_for_user TO *]. I admit I've rarely
seen security models that are that simple
Hi There,
I'm trying to create search component for some document level security. A user
will have a number of tags assigned to them, and these will be passed to the
search component which will add a filter to whatever the user's original query
was. Documents will be written with some or all of