| 185 | == Permission Management == |
| 186 | |
| 187 | * The document links are authorized as per the configured system policy, which will remain in place. |
| 188 | |
| 189 | * For performance reasons, we should first select the documents by accessible_query, and only then search through them (so the search engine doesn't search through documents which the user is not permitted to access anyway). |
| 190 | |
| 191 | * Certain user roles shall only have access to certain types of documents, which is not covered by Auth mechanism. |
| 192 | |
| 193 | * I think the first step is to collect some detailed requirements around document search authorization, and then look into possible solutions. |
| 194 | |
| 195 | * Also note that some documents may include Auth rules of their own. |
| 196 | |