| | 185 | == Permission Management == |
| | 186 | |
| | 187 | * The document links are authorized as per the configured system policy, which will remain in place. |
| | 188 | |
| | 189 | * For performance reasons, we should first select the documents by accessible_query, and only then search through them (so the search engine doesn't search through documents which the user is not permitted to access anyway). |
| | 190 | |
| | 191 | * Certain user roles shall only have access to certain types of documents, which is not covered by Auth mechanism. |
| | 192 | |
| | 193 | * I think the first step is to collect some detailed requirements around document search authorization, and then look into possible solutions. |
| | 194 | |
| | 195 | * Also note that some documents may include Auth rules of their own. |
| | 196 | |
