User can access documents in restricted Folders in Folder Based Workflows.

cancel
Showing results for 
Search instead for 
Did you mean: 
Syedjunaid
Active Member II

User can access documents in restricted Folders in Folder Based Workflows.

Hello everyone,

I am using Alfresco v6.0.a (Dockerized). I have deployed Alfresco in a production eviornment and I have configured Folder Based Workflows for them. I have experienced a problem related to workflow security. Lets suppose there is user A and user B. When user A approves a document, the document is moved into a folder named "B Approval", in which a user B with a Manager role only for this folder, is allowed to approve the document for further approval. Now only user A and user B have permission to access the folder "B Approval". The folder "B Approval" is inside a parent folder named as "Archive B". Only user B have access to folder Archive B. So I have given access to user A only on the folder "B Approval" so that user A can only approve the document and cannot view the document after approval. The approved document is inside "B Approval" folder which is the child of "Archive B". Since user A has only access to the child folder and not the parent folder, the user cannot view the document after the documents is moved on approval.

Now the problem is when user A approves the document without priviewing it and the document is moved to folder "B Approval", user A cannot access it but when user A previews the document and approves the document on the same preview page by clicking on Approve button on right side of the pannel and on Approval on the top of the preview Alfresco shows the path that Where the document is moved. Now if user A click on that path that path, user A is redirected to the folder  "B Approval", which was hidden from the user. I was expecting that user A should not access documents even if the user is redirecting through the preview page.

In any circumstances user A should not have access to the restricted folder. 

Can anyone explain why the user is able to access the document if the user is redirecting through priview page after document is approved?

 

Regards,

Syed Junaid

4 Replies
afaust
Master

Re: User can access documents in restricted Folders in Folder Based Workflows.

"Folder Based Workflows" sounds like some kind of addon was installed, as such a functionality is not part of the default Alfresco installation. I could not find anything on the first couple of Google search result pages for that functionality, so you will have to either contact the developer / creator of that addon / customisation or provide more details here, e.g. link the source repository if it is open source or share configuration / customisation details.

Syedjunaid
Active Member II

Re: User can access documents in restricted Folders in Folder Based Workflows.

Dear afaust,

Folder Based Workflows is not a tool, this type of workflow is triggered by applying a rule on the folder and that rule is based on whenever a document is added, the action " Assign a Workflow" is triggered. In the rule, we specify where the document should be moved after it is Approved or Rejected. We can also say  this kind of workflow as "Rule Based Workflows".

Here is the doucmentation link that I had followed for applying this type of workflow.

https://docs.alfresco.com/4.2/tasks/tuh-workflow-simple.html

Regards,

Syed Junaid.

EddieMay
Alfresco Employee

Re: User can access documents in restricted Folders in Folder Based Workflows.

Hi @Syedjunaid 

You are referencing quite old Enterprise documentation, that refers to Alfresco Explorer, that is no longer used. I would recommend referring to current Community documentation.

HTH,

Digital Community Manager, Alfresco Software.
Problem solved? Click Accept as Solution!
Syedjunaid
Active Member II

Re: User can access documents in restricted Folders in Folder Based Workflows.

Hi @EddieMay ,

Here is the reference to Current Community Documentation.

https://docs.alfresco.com/6.2/tasks/library-folder-rules-simpleworkflow.html