Hi, On Thu, Feb 27, 2014 at 4:46 PM, Tobias Bocanegra <[email protected]> wrote: > the current implementation allows to read all ACLs for a given > principal very efficiently at once with no false hasNode() accesses.
Good point. To avoid has/getNode() misses (that can be expensive with MongoMK) in the proposed alternative, it would probably be a good idea to store a :hasPermissions flag property (or something similar) in each node with an ACL attached to it. Such a property could even be something like :permissionModCount in case in-memory caching (and cache invalidation) is still needed. BR, Jukka Zitting
