Hi Tim,
I’m afraid you didn’t miss anything, security in MarkLogic is role-based. So yes, if you want to use document permissions to control access, then you would have to create a role for each user, and potentially apply a lot of doc permissions to each doc to make it available for anyone that needs to access it. There might be alternatives though. One thing you could consider would be to impose collections restrictions. You can mark specific collections to allow only limited activity under Security in the Admin interface. You could create read and write collections for each user. Documents created by a user should be added automatically to the read write collections of that user, but that user could explicitly tell the system to add one of his/her docs to the read collection of someone else.. Just a thought.. Cheers, Geert *Van:* [email protected] [mailto: [email protected]] *Namens *Timothy W. Cook *Verzonden:* woensdag 11 december 2013 13:13 *Aan:* MarkLogic Developer Discussion *Onderwerp:* [MarkLogic Dev General] Document Level Authorization (Roles and Users) I am planning an application and working on the security plan. Users will each have a collection to store their documents. At various times they will want to share some of these documents with other users. Typically read only. Having read through the vast amount of information, I still do not see where a document creator would be able to add read capability for a single user of a single document. The only approach I can see would be to create A LOT of different Roles. What have I missed? Thanks, Tim -- MLHIM VIP Signup: http://goo.gl/22B0U ============================================ Timothy Cook, MSc +55 21 94711995 MLHIM http://www.mlhim.org Like Us on FB: https://www.facebook.com/mlhim2 Circle us on G+: http://goo.gl/44EV5 Google Scholar: http://goo.gl/MMZ1o LinkedIn Profile:http://www.linkedin.com/in/timothywaynecook
_______________________________________________ General mailing list [email protected] http://developer.marklogic.com/mailman/listinfo/general
