I created a custom module called customer library where there are several customers and each customer has several folders with documents. The module contains Customers(Title)>>Documents(Title,Document). I have modified the permissions on the Customers folder and the Documents folder where the files are stored based on roles but when I log in with user A and I copy the link of a Document folder from user B while logged in with user AI am able to see the documents of user B. For example:
If I copy the link below from user A and log in with user B and paste the link below while logged in with user B I am able to see user A documents.
Is there any way to restrict that action? Like I mentioned previously I have modified the customer and document permissions based on their specific roles. I have even exclusively denied access to the other roles and even then I am still able to access the folders and download the documents even though the user has been denied access to the content.