Curious if anyone has rolled a custom security approach with Neo4j that is more permission based (versus role) to protect access to nodes and edges?
We have a need to protect access of the sub-graph nodes or edges that get returned with a query.
Wondering if anyone has suggestions of good extension points for that.
Basically if the user making the query through a java application should not have access to the data (the node or edge depending on where the permission is tagged) then that data should be pruned or traversal stopped down that part of the tree).
Suggestions of areas to try are appreciated and curious if anyone else has tried to do this. We are trying to determine if augmenting the query is a valid option. It was unclear if there was an HTTP API extension point that could help. We have been looking at can we dynamically tag the querying user as a role to keep traversing but are hoping there are other options. Our users would not be stored within Neo4j, I get there are classes we can write to hook to our authentication and authorization provider.
Would love to hear suggestions of things to check out.