Hi, On Wed, Jun 25, 2014 at 10:16 AM, Thomas Mueller <[email protected]> wrote: > Yes, we would need to use a different access control API. The ability to > check whether a session has access to a path/node/property, without > actually loading the node from the storage backend. Maybe that API is > already there?
The TreePermission interface is the key API here, and the way we've designed it requires loading the nodes being accessed (see the getChildPermission method). The current implementation of the API actually *doesn't* strictly require the loading of the underlying nodes, so we might be able to refactor the API to better accommodate such indexes. BR, Jukka Zitting
