- Find only documents the user is allowed to read
Security should filter/mask the results. The index should likely NOT be
doing this, the result set should pass through a filter.
While these discussions are getting too "abstract" for me, on this particular point I don't necessarily agree. Lucene has a "Filter" concept that could be cached in session scope to allow a much more rapid search capability by only searching on documents that the user is allowed to see rather than doing some post-search filter on a potentially large result set.
Of course, there are a zillion ways to implement the search/security/metadata thing and as I've said, Lucene is my hammer currently, but it is not the only or even the right solution necessarily.
Erik
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
