Guest accounts without access to sensitive settings #6644
felix-hack
started this conversation in
Ideas
Replies: 1 comment
-
I stumbled upon #2946 and #6642 which also discusses this topic. As far as I understand and from our perspective, it would be sufficient for now to make it possible to hide things like the workspace settings or the permission page for a collection (which happens to be read-only already). |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Currently, the only possibility to let guests access the wiki is by creating a share that is not password protected (discussed in #6620 and #6621) or by inviting them as a member. But in this case, even if they are only viewers, they have access to some settings that can be sensitive, like the member section. So if multiple guests are invited, they can each other's name.
I'm thinking about the possibility to remove access to such parts of the settings page for users with the role "viewer" or a new role "guest". This behavior could be toggled by an environment variable or on the settings page.
Beta Was this translation helpful? Give feedback.
All reactions