A frequent requirement for search engines is to maintain document-level security. While a public search engine may expose all documents to all users, many intranet-oriented search engines maintain information that it is accessible to only a subset of users. Historically, the solution to maintaining document-level security has been a roll-your-own with the most common approaches being listed here:
Hopefully your requirements allow you to enrich your indexed document with access tokens that can be searched for using a filter query based on the current user's access tokens. For a simplistic example, to allow only documents marked as accessible to the marketing department, or unclassified, you might add this parameter:
fq=group_label:(marketing_department OR UNCLASSIFIED)
to your query. However, there will be syncing challenges if the authorization lists per document are managed elsewhere. ManifoldCF helps with that and uses this general approach to document security.Write...