30 Nov 2005
15 Apr 2008
Link to this post
Is there a way to implement additional security measures on the Images & Documents module, either through a custom provider or other model?
I love sitefinity and the new library module, but the basic "all or nothing" security approach of either having full access to a given module, or not seeing it at all, is too simplistic for us and I'm sure others here feel the same. I have been using sitefinity since v2.0 and to be honest I am a little frustrated that this functionality has not yet been implemented.
Here is our situation:
We are using sitefinity for a large scale internal Intranet, with over 400 staff and approx 15 CMS users/contributors. Our Intranet contains many types of documents such as job postings, HR policies, department procedures, agendas, etc. All departments need to be able to upload documents to the Intranet, however each department cannot have access to modify others files/libraries.
Unfortunately I cannot provide this functionality for our staff out of the box. I need to be able to provide simple security measures, where certain roles can see/access certain libraries.
I do believe this is a basic need, and would ask that you strongly consider implementing this functionality in the next release or service pack. I would also really appreciate any suggestions on where to start implementing this ourselves if possible.
If any other users here find the module security model limiting please also speak up.
I am not trying to harp on the great work the sitefinity team has done with the product so far. I am a big fan, however I do believe for sitefinity to be used as a enterprise web CMS, it needs better module security or at least an API to extend it.