jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jacco van Weert" <1111softw...@gmail.com>
Subject Re: Authorization with ACL and permissions
Date Thu, 27 Sep 2007 08:24:09 GMT

We also implemented a permission system in Jackrabbit. We use a "permission"

[jecars:permissionable] mixin
- jecars:Actions    (String)    multiple <
- jecars:Delegate   (Boolean)
- jecars:Owner      (Boolean)
- jecars:Principal  (Reference) multiple

Our experience is that the custom accessmanager should cache results in
order to have a good performance.
Jackrabbit calls the accessmanager a lot(!).

You can see/download the code at http://sourceforge.net/projects/jecars/



On 9/27/07, bilobag <bilobag@hotmail.com> wrote:
> We have decided that our client requires user based authentication for our
> app.  Now i've seen some posts about people storing an acl list in each
> node.  However, I am wondering how the performance is for this.  We
> originally wanted to use a database with hibernate to manage the user node
> permissions, but it seems like it could be a performance issue considering
> that we may have to do inserts for hundreds of rows per node (number of
> users x number of permissions).  I think this would cause a significant
> performance issue.  If I were to do the same in jackrabbit and store these
> user permissions in each node, would this be a performance issue?  Is this
> the recommended method of storing user node permissions?  I currently am
> using jackrabbit backed by an oracle database.  Any advice is appreciated
> since we've been discussing this issue for a week now.  Thanks.
> --
> View this message in context:
> http://www.nabble.com/Authorization-with-ACL-and-permissions-tf4526345.html#a12914620
> Sent from the Jackrabbit - Users mailing list archive at Nabble.com.

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message