Effective Role and Permission set pre calculation

17:37 <jesse> I really want to think up a new way to interacting with roles and
their cumulative permissions and stuff
17:37 <joakim> YUP.
17:37 <jesse> i think it might behoove us to think about calculating permission
sets and role relationships etc at the persist time
17:38 <joakim> the idea of pre-calculating the permissions is tempting to me.
17:38 <joakim> so that the user is not directly bound to the role table.
17:38 <jesse> precisely
17:38 <jesse> +1
17:38 <jesse> just keeping it synced becomes important
17:38 <joakim> user has a role reference, and a list of permissions. the list
of permissions is recalculated once the user's roles are
changed, or the role definition is changed.

this will give us huge gains in performance on many intensive operations that are currently relying on caches of objects, this will get those operations back to just iterative operation checks