Skip to main content
Open

Security Required for Attachments

Related products:CC Users & Roles
chris_mudd
dan_ahrens
  • chris_mudd
    chris_mudd
  • dan_ahrens
    dan_ahrens

TimBer
  • Contributor ⭐️⭐️
  • 6 replies

Currently there is an all or nothing policy for attachments included within communities. If you can see the post with an attachment you can download the file. 

We need the ability to restrict who can download attachments based on either the default roles or custom roles.

Currently the functionality required is available for comments. E.g. being able to make comments is enabled on a category basis for each default role or customised role.

Use case:

We need to be able to make our forums publicly viewable but also be able to restrict the downloading/viewing of attachments to specific membership categories.

We may however, choose to allow some attachments to be available to unregistered users.

Permission Example

 

3 replies

daniel.boon
Forum|alt.badge.img
  • Helper ⭐️⭐️⭐️
  • 730 replies
  • February 10, 2021

Thanks for submitting this idea @TimBer - do you have any more specifics about this use case, to help us understand why you’d want to restrict the downloads? E.g. what’s the content of the files, and which kinds of members should the files be restricted to?


daniel.boon
Forum|alt.badge.img
  • Helper ⭐️⭐️⭐️
  • 730 replies
  • February 10, 2021
Updated idea status NewOpen

TimBer
  • Author
  • Contributor ⭐️⭐️
  • 6 replies
  • February 11, 2021

Hi @daniel.boon 

Our community is a private community for users of ERP software. Our members like to share code and examples of their work, to either seek help, showcase achievements or help solve another members problem. 

Our forum is currently private and restricted so that only paid members can access and download attachments from the community.

We’d like to be able to extend the reach of the community by making the forums publicly available, and searchable. However, in order to do this this we need to ensure the security of the proprietary information that our members are sharing with peers. 

In addition, allowing the downloading of content from the community without the need to login prevents us from converting these potential members and/or monitoring who has downloaded specific files.

Currently an opportunity exists for us to make forums public and create a registration funnel in order for non-members to comment on posts/create topics. Security on downloads would further increase our conversion opportunities and push these users into our membership channel.


johntrask_bt
Forum|alt.badge.img+4
  • Contributor ⭐️⭐️⭐️⭐️⭐️
  • 64 replies
  • January 2, 2025

Has there been any movement on this topic? We are in a similar situation. While 90% of our community is public, we have some forum sections that restricted to paying customers or partners. We sometimes post files in those sections that are ok to share with Partners but not with customers or the general pubic and would love that the download link could be protected behind a permission group. IE, if you do not have the role of Partner, you can’t download this file, even if someone gave you the direct link. 

 

We used GA and I noticed that someone must be giving links from downloads in a hidden forum section to other people. 


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings