Hyland Connect

zh · ‎07-14-2017

Hi,

we have faced with the following challenge.

Everybody who create a files in Alfresco (we use Community v5.1) can share any accessible documents so for us it is a security breach. My question, how we can 1) monitor; 2) control; and 3) block (if need) this possibility i.e. "Shared" feature of Alfresco?

We have searched user activity log in database, in Alfresco installation folder BUT no success.

Screenshot of "Shared" function is attached.

Thank you in advance for any help!

zh · ‎07-18-2017

Cesar,

I have carefully read the description of Alfresco Content Services REST API and found the following: activities : Retrieve and manage activities BUT

1. This API working with single person ID so it is will be inconvenient to use.

2. For example, if somebody "Shared" a file you need to process a bunch of users to get this information also you need to have a DB to save a previous scan results for comparison.

Best regards,

Zh

cesarista · ‎07-19-2017

Yes, the activities API is not valid for this.

For your rule, it should apply on a given site on modified content that implements some simple Javascript code for checking if aspect qshare:shared is applied. If so, then send a notification.

Regards.

--C.

zh · ‎07-19-2017

Hi Cesar, I think this type of task is not simple as seems.

For example if qshare:shared aspect already changed by previous user how we will determine that ? i.e. how we can determine previous state of the qshare:shared aspect ?

So as I thought early we should to search a method which allow us to catch events from logs.

Thanks!

Best regards,

Zh

Hyland Connect

User activity logs