Hi Christopher, Jeffrey, > How many rolls can we add before it begins to be a performance hit? > > We need a more granular permission model similar to a file > system and are considering adding roles for files/ folders > that need unique permissions. > > Can we do hundreds ok? Thousands? 100K? etc. There should > only be less than a dozen or so rolls per file / user > combinations, but many in the database as a whole. Any > gotcha's we should watch out for?
You need 4 roles per file (read, insert, update, exec) for full flexibility, more is not necessary. Just assign the appropriate file-roles to the users that need the access, this prevents adding many permissions to a single file. But you will still be putting a lot of stress on the Security database. It has to be taken into account in every query. I don't know how MarkLogic Server goes about with that. Apart from that, underneath the Security database is more or less just a plain xml database like the documents database. Unless MarkLogic Server is keeping special indexes in memory to speed access to the security model, I see no particular reason why not try your approach. But perhaps Mark Logic would like to comment themselves.. Kind regards, Geert Drs. G.P.H. Josten Consultant http://www.daidalos.nl/ Daidalos BV Source of Innovation Hoekeindsehof 1-4 2665 JZ Bleiswijk Tel.: +31 (0) 10 850 1200 Fax: +31 (0) 10 850 1199 http://www.daidalos.nl/ KvK 27164984 De informatie - verzonden in of met dit emailbericht - is afkomstig van Daidalos BV en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onbedoeld hebt ontvangen, verzoeken wij u het te verwijderen. Aan dit bericht kunnen geen rechten worden ontleend. _______________________________________________ General mailing list [email protected] http://xqzone.com/mailman/listinfo/general
