Prevent CAD document from downloading in Workspace with no download access

tcasola · ‎Jul 26, 2016

We configured a role ACL to read epmdocument only and not download.

In testing the role, the user accesses the CAD doc and there is a fail notice, yet the CAD doc is added to workspace with errors (see attachment)

We think it would make sense (and make better security) if nothing (including the metadata) is downloaded in a workspace if the user doesn’t have download rights.

MikeLockwood · ‎Jul 26, 2016

I agree that this makes sense, but may be a little bit challenging to implement.

System has to first determine for each model / drawing requested:

- what is correct version per selected config spec (latest, as stored, baseline, etc.)

- does user have READ for that version at its current state; if not repeat for next latest version

Then, if you're using replication:

- where is the file to be pulled from

Essentially, it has to add one more line of process:

- Given that the user has READ access, do they also have DOWNLOAD access for this version, at its current state? If not, loop back.

Hopefully PTC will be able to implement this.

olivierlp · ‎Jan 05, 2022

Hello,

We are archiving your idea as part of a general review. This action is based on the age of your idea and the total number of votes received, as per this announcement.

You can always post a new idea with all the details required in the form.

Thank you for your participation.