Securing MarkLogic Server

Query-based access control (QBAC) is a mechanism to provide policy enforcement for access to resources based on security markings, metadata, or data in the records themselves. It works by associating queries with roles and users, adding them automatically to security queries to constrain access. It integrates with the existing MarkLogic Server security model, which is a role-based security model.