For the aPriori Search mechanism, Access Control checks are performed when you try to open an entity that appears in the search results, not when the search is performed.

When you use Search, ALL scenarios that meet the search criteria are displayed, just the same as if Access Control has not been implemented at your site. Even if an entity does not have Read permission, it will still be listed in the Component Scenarios area. However, only a small sub-set of its fields are displayed: no cost data is shown, and no thumbnail is displayed. This approach strikes a balance between performance and security: to perform comprehensive Access Control checks during the search, aPriori would need to load everything and check it on-the-fly, which could cause unacceptable slow-downs.

When you place the cursor over such an entity, a tooltip message appears informing you that you do not have access to the component.

Once you try to open such an entity, aPriori displays an access error message as described in the previous section.