https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100734#M29035 <P>Hello,</P><P>first of all thanks for reading my question!</P><P>When i create link to a document in share and want to get it in share it inherits permissions from an original document, but when i use search/nodes api it returns links to documents/folders regardless of permissions to original documents/folders so when users try to follow those links the get 403 error.</P><P>Can i add some condition to query so it woudnt return links to documents which user has no permission to see.</P><P>I will add pictures below:</P><P><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_10.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/494i4ECCB06C8E11016C/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_15.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/497i0F555764774B7ADF/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_14.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/498i08A7C141BB4FE440/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_13.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/493i7C7F779F9B36DA1B/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_11.png" style="width: 764px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/496i1C0D21D9A52B6387/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN></P> Thu, 19 Mar 2020 18:14:42 GMT mire323 2020-03-19T18:14:42Z https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100734#M29035 <P>Hello,</P><P>first of all thanks for reading my question!</P><P>When i create link to a document in share and want to get it in share it inherits permissions from an original document, but when i use search/nodes api it returns links to documents/folders regardless of permissions to original documents/folders so when users try to follow those links the get 403 error.</P><P>Can i add some condition to query so it woudnt return links to documents which user has no permission to see.</P><P>I will add pictures below:</P><P><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_10.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/494i4ECCB06C8E11016C/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_15.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/497i0F555764774B7ADF/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_14.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/498i08A7C141BB4FE440/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_13.png" style="width: 999px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/493i7C7F779F9B36DA1B/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot_11.png" style="width: 764px;"><span class="lia-inline-image-display-wrapper" image-alt="image"><img src="https://connect.hyland.com/t5/image/serverpage/image-id/496i1C0D21D9A52B6387/image-size/large?v=v2&amp;px=999" role="button" title="image" alt="image" /></span></SPAN></P> Thu, 19 Mar 2020 18:14:42 GMT https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100734#M29035 mire323 2020-03-19T18:14:42Z https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100735#M29036 <P>You can exclude links by adding something like the following clause to your queries:</P> <PRE>-TYPE:"app:filelink"</PRE> Fri, 20 Mar 2020 08:48:31 GMT https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100735#M29036 angelborroy 2020-03-20T08:48:31Z https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100736#M29037 <P>I want to get links, but only ones i have right to see.</P> Sun, 19 Apr 2020 18:59:03 GMT https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100736#M29037 mire323 2020-04-19T18:59:03Z https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100737#M29038 <P>What Alfresco Share does in filtering the link objects is not part of the regular permission model handling. It is a convenience filtering specific to the Share document library UI. You could use other operations in Alfresco Share, e.g. search, and would be able to find / access the link.<BR />This convenience handling is of course missing in the ReST API, which simply returns all elements you are allowed to see. From a permission model perspective, you are allowed to see the link, but not the target. So the API of course returns you the link and its details.</P> <P>This is all behaviour as designed and this issue is one of the known drawbacks of using link nodes via APIs which where not designed to apply any special logic to them.</P> Mon, 20 Apr 2020 16:17:41 GMT https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100737#M29038 afaust 2020-04-20T16:17:41Z https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100738#M29039 <P>Thank you soo much for explaining that in such great detail!</P> Wed, 22 Apr 2020 12:41:37 GMT https://connect.hyland.com/t5/alfresco-forum/search-api-doesnt-enforce-permissions-on-document-links/m-p/100738#M29039 mire323 2020-04-22T12:41:37Z