Methods and systems for managing permissions data
First Claim
1. A non-transitory machine readable storage medium containing executable computer program instructions which cause a data processing system to perform a method comprising:
- generating search results by searching a metadata database or an index database without regard to permissions;
determining that permission information for a file in the search results is not included in a permissions cache;
determining valid permission information for the file in a hierarchical file system;
adding the valid permission information for the file to the permissions cache;
adding directory information for the file to a directory cache, wherein the directory cache identifies directories having files included in a permissions cache;
receiving a notification of a change of permissions of a directory in the hierarchical file system;
determining, in response to the notification, whether the directory is listed in the directory cache;
invalidating or deleting at least a portion of the permissions cache when the directory is listed in the directory cache; and
maintaining validity of the permissions cache when the directory is not listed in the directory cache.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, systems and computer readable media which use permissions checking when deciding whether to allow access to a file are described. In one exemplary embodiment, a method includes receiving a notification of a change of permissions of a directory in a hierarchical file system and determining, in response to the notification, whether to update partially a permissions cache which is used in screening access based on permissions, such as access to search results. The determining may include a comparison of an identifier of the directory to a data structure of cached directories which have files represented in the permissions cache.
-
Citations
22 Claims
-
1. A non-transitory machine readable storage medium containing executable computer program instructions which cause a data processing system to perform a method comprising:
-
generating search results by searching a metadata database or an index database without regard to permissions; determining that permission information for a file in the search results is not included in a permissions cache; determining valid permission information for the file in a hierarchical file system; adding the valid permission information for the file to the permissions cache; adding directory information for the file to a directory cache, wherein the directory cache identifies directories having files included in a permissions cache; receiving a notification of a change of permissions of a directory in the hierarchical file system; determining, in response to the notification, whether the directory is listed in the directory cache; invalidating or deleting at least a portion of the permissions cache when the directory is listed in the directory cache; and maintaining validity of the permissions cache when the directory is not listed in the directory cache. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 20)
-
-
11. A machine implemented method comprising:
-
generating search results by searching a metadata database or an index database without regard to permissions; determining that permission information for a file in the search results is not included in a permissions cache; determining valid permission information for the file in a hierarchical file system; adding the valid permission information for the file to the permissions cache; adding directory information for the file to a directory cache, wherein the directory cache identifies directories having files included in a permissions cache; receiving a notification of a change of permissions of a directory in the hierarchical file system; determining, in response to the notification, whether the directory is listed in the directory cache; invalidating or deleting at least a portion of the permissions cache when the directory is listed in the directory cache; and maintaining validity of the permissions cache when the directory is not listed in the directory cache. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 21, 22)
-
Specification