• [SECURITY] How to prevent someone to move a folder

  • OpenKM has many interesting features, but requires some configuration process to show its full potential.
OpenKM has many interesting features, but requires some configuration process to show its full potential.
Forum rules: Please, before asking something see the documentation wiki or use the search feature of the forum. And remember we don't have a crystal ball or mental readers, so if you post about an issue tell us which OpenKM are you using and also the browser and operating system version. For more info read How to Report Bugs Effectively.
 #27675  by michaeled
 
Hi,

I have a problem to configure the security to obtain this :
I want some users can add some files in a folder;

I try to add the write permission to the folder. But now, the users are able to move this folder into one where theay have the delete permission and after that they can delete de folder (sic!)

How to prevent users from moving a folder when they have only write access on it ?

Thanks for your help,

Michael.
 #27702  by jllort
 
1- The good option should be extend security to copy and move actions.

Now, Is there any way to identify user who should not execute move actions ? some role they have not or similar. Could try with automation and minimal logic to raise and error when trying to do it. Or with less sophisticated way, detecting if somebody tries to move from some path ( minimal logic to detect it ) and reverse the action after move ( not very pleasant way for doing it, but will go right ).

About Us

OpenKM is part of the management software. A management software is a program that facilitates the accomplishment of administrative tasks. OpenKM is a document management system that allows you to manage business content and workflow in a more efficient way. Document managers guarantee data protection by establishing information security for business content.