--- In Firebird-Architect@yahoogroups.com, "Claudio Valderrama C."
<cvalde@u...> wrote:

> If all requests are going to be invalidated when a role is switched
> dynamically, I really do not see the big difference with reattaching

to the

> db. I wish there was a way to calculate those permissions quickly.
> Otherwise, we are defeating the advantage of cached requests: they

will be

> only be valid for the current connection and while roles don't change.
>
> C.

I don't see the need to invalidate the current requests. I see a need
to validate the requests as they are made through lookaside
mechanisms. The actual mechanisms can be very efficient, with careful
planning.