You are viewing limited content. For full access, please sign in.

Question

Question

Deny Feature Rights

Laserfiche
Updated August 8, 2024
asked on August 8, 2024

I have an odd situation where a very complex security design is in place and working perfectly.  Security is assigned based on group membership and includes nested groups.  For the sake of this discussion, a user has the effective Feature Rights of Search, Print, and Export based on these various groups and nested groups. 

The customer is wanting one person in this setup to no longer have the Print and Export Feature Rights.  While I can create new groups for this singular user and update the overall security structure that is in place, I would rather just Deny this one user these two Feature Rights.  As there is not the built-in ability to Deny in the Feature Rights, can anyone think of another way to take away these?

1 0

Answer

APPROVED ANSWER
replied on August 8, 2024

Hi Beau, 

There is no 'deny' concept for feature rights, as they really are more about 'can a user access this button through the UI' rather than a comprehensive security check, and the presence of denies would really suggest the later. Feature rights are often better thought of as a UI-convenience than a security item - for example, it's pretty hard to remove all ways that someone could print or export a document fundamentally, through screen scraping or external tools, so it's more about making it difficult or discouraged. 

2 0

Replies

replied on August 8, 2024

Agree 100%.  I had this same conversation with the customer that it is better to keep the options so if people use them, you can tell via AuditTrail. But they are adamant that this user has the privilege removed.  Such a niche need but I was just hoping there was some hidden work-around someone knew of that I had missed. No worries.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...