Joey
06/11/2025, 5:21 PMLiam Costello (Flowers-Software)
06/11/2025, 5:49 PMToi
06/13/2025, 6:17 PMJoey
06/13/2025, 6:29 PMToi
06/13/2025, 10:03 PMJoey
06/14/2025, 12:53 AMToi
06/14/2025, 2:54 AMJoey
06/14/2025, 3:00 AMToi
06/14/2025, 3:01 AMJoey
06/14/2025, 3:03 AMJoey
06/14/2025, 3:03 AMJoey
06/14/2025, 3:04 AMToi
06/14/2025, 3:05 AMJoey
06/14/2025, 3:05 AMToi
06/14/2025, 3:06 AMToi
06/14/2025, 3:07 AMJoey
06/14/2025, 4:06 AMn.ithin
06/15/2025, 1:43 PMJoey
06/15/2025, 7:27 PMJoostJoh
06/16/2025, 12:29 PMdefinition user {}
definition person {
relation owner: tenant
relation representation: user
permission view = owner->member
}
definition tenant {
relation member: person#representation
}
Now we are seeing an big performance hit looking up if user:a can see person:b, when an tenant has a lot of members (> 10k). It follows the following path:
✓ person:william view
└── ✓ tenant:main member
└── ✓ person:jan,john,joost,william representation
└── user:3
It first looks up all the people that are a member of our tenant, then it loops through all the people until it finds the user (representation) with id 3. Any recommendations on how we could handle this lookup more efficiently?
We would like to keep our abstraction of an user representing a person instead of making users direct members of the tenant.thanos_alas
06/18/2025, 9:48 AMbraden
06/18/2025, 1:27 PMspicedb datastore repair
command on my postgres read replicas before updating my spiceDB deployment to use them. Two questions:
* Is this command safe to run multiple times?
* Will I need to run this command again if we upgrade our read replica instances in AWS?yetitwo
06/18/2025, 2:03 PMbraden
06/18/2025, 2:04 PMromansoldiers
06/18/2025, 7:41 PMjzelinskie
06/18/2025, 7:51 PMromansoldiers
06/18/2025, 8:09 PMyetitwo
06/18/2025, 9:42 PMromansoldiers
06/18/2025, 10:12 PM