Hello All,
I am also trying to model ACL on solr search. Since in my case the data
itself is very huge and user base is also too big. Putting ACL inside solr
gives quite good response time, but ACL outside the solr seems to a
nightmare.
In case of ACL inside the solr puts heavy load on keeping
: Erick Erickson erickerick...@gmail.com
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org
Date: Saturday, October 30, 2010, 6:01 PM
If that's in response to Lance's
comment, the answer is that if you return
autosuggest possibilities you effectively allow users to
see data
If that's in response to Lance's comment, the answer is that if you return
autosuggest possibilities you effectively allow users to see data they
shouldn't. Imagine you have a field of the real names of spies. You only
want the persons way high up in the security chain to access these names and
'http://blogs.techrepublic.com.com/security/?p=4501tag=nl.e036'
EARTH has a Right To Life,
otherwise we all die.
--- On Mon, 10/25/10, Jonathan Rochkind rochk...@jhu.edu wrote:
From: Jonathan Rochkind rochk...@jhu.edu
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org solr
Rochkind rochk...@jhu.edu wrote:
From: Jonathan Rochkind rochk...@jhu.edu
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org solr-user@lucene.apache.org
Date: Monday, October 25, 2010, 8:19 AM
Dennis Gearon wrote:
why use filter queries?
Wouldn't reducing the set headed
Son, don't touch that stove . . . .,
OUCH! Hey Dad, I BURNED my hand on that stove, why didn't you tell me
that?!?#! You know I need to know WHY, not just DON'T!
Dennis Gearon
Very important: do not make a spelling or autosuggest index
from a
text field which some people can see and other
Many thanks for all the responses. I now plan on benchmarking and
validating both the filter query approach, and maintaining the ACL
entirely outside of Solr. I'll decide from there.
Paul
On Mon, Oct 25, 2010 at 8:16 AM, Paul Carey paul.p.ca...@gmail.com wrote:
Many thanks for all the responses. I now plan on benchmarking and
validating both the filter query approach, and maintaining the ACL
entirely outside of Solr. I'll decide from there.
Paul
Great.
I am looking
Dennis Gearon wrote:
why use filter queries?
Wouldn't reducing the set headed into the filters by putting it in the main
query be faster? (A question to learn, since I do NOT know :-)
No. At least as I understand it. In the best case, the filter query will
be a lot faster, because filter
, so you do not have to make them
yourself. from 'http://blogs.techrepublic.com.com/security/?p=4501tag=nl.e036'
EARTH has a Right To Life,
otherwise we all die.
--- On Mon, 10/25/10, Paul Carey paul.p.ca...@gmail.com wrote:
From: Paul Carey paul.p.ca...@gmail.com
Subject: Re: Modelling Access
=4501tag=nl.e036'
EARTH has a Right To Life,
otherwise we all die.
--- On Mon, 10/25/10, Jonathan Rochkind rochk...@jhu.edu wrote:
From: Jonathan Rochkind rochk...@jhu.edu
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org solr-user@lucene.apache.org
Date: Monday, October
Hi,
See SOLR-1872 for a way of providing access control, whilst placing
the ACL configuration itself outside of Solr, which is generally a
good idea.
http://www.lucidimagination.com/search/out?u=http://issues.apache.org/jira/browse/SOLR-1872
There are a number of ways to approach Access
Hi Paul,
Regardless of how you implement it, I would recommend you use filter queries
for the permissions check rather than making it part of the main query.
On Sat, Oct 23, 2010 at 4:03 AM, Paul Carey paul.p.ca...@gmail.com wrote:
Hi
My domain model is made of users that have access to
Two things will lessen the solr admininstrative load :
1/ Follow examples of databases and *nix OSs. Give each user their own group,
or set up groups that don't have regular users as OWNERS, but can have users
assigned to the group to give them particular permissions. I.E. Roles, like
...@gmail.com
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org
Date: Saturday, October 23, 2010, 7:01 AM
Hi Paul,
Regardless of how you implement it, I would recommend you
use filter queries
for the permissions check rather than making it part of the
main query.
On Sat, Oct
Gearon gear...@sbcglobal.net
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org
Date: Saturday, October 23, 2010, 11:49 AM
Two things will lessen the solr
admininstrative load :
1/ Follow examples of databases and *nix OSs. Give each
user their own group, or set up
yourself. from '
http://blogs.techrepublic.com.com/security/?p=4501tag=nl.e036'
EARTH has a Right To Life,
otherwise we all die.
--- On Sat, 10/23/10, Dennis Gearon gear...@sbcglobal.net wrote:
From: Dennis Gearon gear...@sbcglobal.net
Subject: Re: Modelling Access Control
To: solr-user
.
--- On Sat, 10/23/10, Israel Ekpo israele...@gmail.com wrote:
From: Israel Ekpo israele...@gmail.com
Subject: Re: Modelling Access Control
To: solr-user@lucene.apache.org
Date: Saturday, October 23, 2010, 7:01 AM
Hi Paul,
Regardless of how you implement it, I would recommend you
18 matches
Mail list logo