Hello,
when i restricted access on folder this way
Files Access Control:
File collaborative tag - is tagged with - GroupTag
User group membership - is not member of group - Group
and added Collaborative tag GroupTag to this folder, user who is not a member of any group can browse all files/folders in this folder and in all its subfolders. User is not allowed to access files contained in this folder.
How can I prevent this file browsing?
Thanks
This is intended for now, also see https://docs.nextcloud.com/server/10/admin_manual/configuration_files/files_access_control.html#denied-access
Trying to remove name iteration is way to error prone, so nothing we can garantee. Therefor we don’t support it at all.
ZrL
October 6, 2016, 10:22pm
3
Edited Post:
I have made some tests and i’ve found something strange:
Case A:
Files Access Control:
File collaborative tag - is tagged with - ACCES_DENIED
User group membership - is not member of group - GROUP_A
User management
User is member of group GROUP_A
Tag Folder
Folder is tagged with ACCES_DENIED
Result
User see the content in the folder but he cannot upload or open anything.
Case B:
Files Access Control:
File collaborative tag - is tagged with - ACCES_DENIED
User group membership - is member of group - GROUP_B
User management
User is member of group GROUP_B
Tag Folder
Folder is tagged with ACCESS_DENIED
RESULT
User don’t see the content ! (that’s we need) and can’t upload, perfect !
As you can see, we don’t have the same behavior if we change “is member of group” and “is not member of group”. Is it a bug?
Can you see if https://github.com/nextcloud/server/pull/1771/files fixes the issue for you?
Make sure to delete the correct line, as the code it there twice.
ZrL
October 17, 2016, 2:04pm
5
Hi
I have deleted the line mentioned in https://github.com/nextcloud/server/pull/1771/files
in manager.php, but the user still can view the content of the denied folder.