03-19-2020 02:14 PM
Hello,
first of all thanks for reading my question!
When i create link to a document in share and want to get it in share it inherits permissions from an original document, but when i use search/nodes api it returns links to documents/folders regardless of permissions to original documents/folders so when users try to follow those links the get 403 error.
Can i add some condition to query so it woudnt return links to documents which user has no permission to see.
I will add pictures below:
04-20-2020 12:17 PM
What Alfresco Share does in filtering the link objects is not part of the regular permission model handling. It is a convenience filtering specific to the Share document library UI. You could use other operations in Alfresco Share, e.g. search, and would be able to find / access the link.
This convenience handling is of course missing in the ReST API, which simply returns all elements you are allowed to see. From a permission model perspective, you are allowed to see the link, but not the target. So the API of course returns you the link and its details.
This is all behaviour as designed and this issue is one of the known drawbacks of using link nodes via APIs which where not designed to apply any special logic to them.
03-20-2020 04:48 AM
You can exclude links by adding something like the following clause to your queries:
-TYPE:"app:filelink"
04-19-2020 02:59 PM
I want to get links, but only ones i have right to see.
04-20-2020 12:17 PM
What Alfresco Share does in filtering the link objects is not part of the regular permission model handling. It is a convenience filtering specific to the Share document library UI. You could use other operations in Alfresco Share, e.g. search, and would be able to find / access the link.
This convenience handling is of course missing in the ReST API, which simply returns all elements you are allowed to see. From a permission model perspective, you are allowed to see the link, but not the target. So the API of course returns you the link and its details.
This is all behaviour as designed and this issue is one of the known drawbacks of using link nodes via APIs which where not designed to apply any special logic to them.
04-22-2020 08:41 AM
Thank you soo much for explaining that in such great detail!
Explore our Alfresco products with the links below. Use labels to filter content by product module.