Hello,
> Given the requirement to break down a document into separately > controlled pieces, I'd create a servlet that "fronts" the Solr > servlet and handles this conversion. I could think of ways to do it > using Solr, but they feel like unnatural acts. > > As a general comment on ACLs, one relatively easy way to handle this > is via group ids that you use to restrict the query. Each document > has a groupid with a list of group ids that are authorized to access > it. Each user query is converted into a (query) AND (groupid:xx OR > groupid:yy), where xx/yy (and so on) are the groups that the user > belongs to. With all do respect, I really think the problem is largely underestimated here, and is far more complex then these suggestions...unless we are talking about 100.000 documents, couple of users, and updating ones a day. If you want millions of documents, facetted authorized navigation including counting and every second a new indexed document which should be reflected in the result instantly and changing authorisations....the problem isn't relatively easy to solve anymore :-) Regards Ard > > -- Ken > -- > Ken Krugler > Krugle, Inc. > +1 530-210-6378 > "If you can't find it, you can't fix it" >
