We&#x27;ve had community members bring this up[0].While there are a variety of approaches, currently our recommended solution is to use the Watch API[1] to create Leopard-style (matrix) indexes in the client’s database to enable efficient permission filtering using schema and YAML-based index definitions.We started down the path of building an example watch consumer[2] but both the team and the interested community members were pulled off it for reasons, but not for technical ones.This FAQ may be helpful to learn more about leopard indexes[3].0: <a href="https:&#x2F;&#x2F;github.com&#x2F;Permify&#x2F;permify&#x2F;issues&#x2F;2681" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;Permify&#x2F;permify&#x2F;issues&#x2F;2681</a>1: <a href="https:&#x2F;&#x2F;fusionauth.io&#x2F;permify-docs&#x2F;api-reference&#x2F;watch&#x2F;watch-changes" rel="nofollow">https:&#x2F;&#x2F;fusionauth.io&#x2F;permify-docs&#x2F;api-reference&#x2F;watch&#x2F;watch...</a>2: <a href="https:&#x2F;&#x2F;github.com&#x2F;Permify&#x2F;indexer" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;Permify&#x2F;indexer</a>3: <a href="http:&#x2F;&#x2F;nil.csail.mit.edu&#x2F;6.5840&#x2F;2023&#x2F;papers&#x2F;zanzibar-faq.txt" rel="nofollow">http:&#x2F;&#x2F;nil.csail.mit.edu&#x2F;6.5840&#x2F;2023&#x2F;papers&#x2F;zanzibar-faq.txt</a>

Using something like this for centralized authorization across services works well for binary access control decisions.But the problem that remains is &quot;authorized search&quot; in an efficient way. Asking permify what resources a user can access and then query the app postgres db with &quot;WHERE resource_id IN ( {list}, {with}, {many}, {IDs}, ... )&quot; does not scale well. How to solve this?

We Built an Authorization Engine That the Fortune 100 Bet On

Comments

seymon

mooreds