lucene-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kelvin Tan <>
Subject Re: authentication support in lucene
Date Fri, 23 Jul 2004 08:23:56 GMT
If you don't have low-level access to the framework that can retrieve a batch 
list of accessible IDs, document-by-document checking of ACL will be _painful_.

I implemented ACL checking via Filters. Caching filters definitely helps, but 
may not be applicable in every situation. I stored the UUID of each document in 
the database as well as in Lucene. That way, by retrieving a list of accessible 
documents via SQL, I can create the necessary BitSet.


On Thu, 22 Jul 2004 19:59:27 +0200, John Wang said:
> Hi:
> Maybe this has been asked before.
> Is there a plan to support ACL check on the documents in lucene?
> Say I have a customized ACL check module, e.g.:
> boolean ACLCheck(int docID,String user,String password);
> And have some sort of framework to plug in something like that.
> I was looking at the Filter class. I guess I can read the entire
> index, for each document, feed it to the authentication module, if
> authenticated, bitset the docID and return the BitSet instance. I
> sounds very slow for large hits. I guess  I can play with cacheing
> etc.
> Any other ideas?
> Thanks
> -John
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message