If you're using Postgres then using the ltree module is great for permission sys...

calderwoodra · 2025-12-24T16:00:39 1766592039

Agreed, specifically for the file structure use-case, we were able to solve this with ltree.

amcvitty · 2025-12-24T20:19:20 1766607560

About to embark on a similar project. Would love to hear any insights you can share!

bencyoung · 2026-01-06T10:03:24 1767693804

Sorry for the delay! It's fairly simple.

1. You have a column on your objects you want secured as an LTREE[] 2. You add a GIST index on that column

The values should be the different hierarchy paths to access the object starting with a "type" e.g departments.root.deptA

When you run a query, depending on how you want to access you use a <@ query. E.g. I'm a user with root access to all depts "col <@ 'departments.root'::ltree" or I'm a user in dept A "col <@ 'departments.root.deptA'::ltree" etc

casper14 · 2025-12-24T13:04:00 1766581440

Could you explain why this is great over alternatives?

nh2 · 2025-12-24T13:54:43 1766584483

Do you have an article about that?

bencyoung · 2026-01-06T10:09:35 1767694175

Sorry for the delay! It's fairly simple. 1. You have a column on your objects you want secured as an LTREE[] 2. You add a GIST index on that column

The values should be the different hierarchy paths to access the object starting with a "type" e.g departments.root.deptA

When you run a query, depending on how you want to access you use a <@ query. E.g. I'm a user with root access to all depts "col <@ 'departments.root'::ltree" or I'm a user in dept A "col <@ 'departments.root.deptA'::ltree" etc