Code Room
System designMediumsd-g055
Subject CachingLevel Mid–Senior~35 minCommon in Distributed systems interviewsIndustries Technology, Software development

Question

Design caching for an authorization/permissions service that answers 'can user U do action A on resource R?' It's called on nearly every API request (read-heavy, 50k qps), permissions change rarely but a revocation must take effect within ~5s, and a cache miss is expensive (a graph traversal). Also, lots of queries are for principals that don't exist or have no grant. Design the cache, including how you handle negative results and revocations.

What a strong answer looks like

Clarify scale and constraints first. Propose a clean component breakdown, then go deep on the hard parts — data model, bottlenecks, consistency, failure modes — and name the trade-offs you are making.

Narrate your design
Loading whiteboard…
Run or narrate your approach, then ask the coach.