On Wed, Nov 18, 2009 at 12:35 AM, sftf <[email protected]> wrote: > Are there plans to implement authorization at document's attributes > granularity, > or it should be implemented at the application level? > > In the current version I see only one version of access control at attribute > granularity - > create personal views for each application user with the emitting permitted > fields only. > But adding user in this scheme requires the creation of the new views and > leads to > time-consuming indexing of potentially large volumes of data.
Haven't put much thought into this, but from your problem description, I guess one way to alleviate the problem is to have views based on groups and assign users to a certain group.
