documentsWeb version
Application: Documents Web version

When attempting to access a shared element (file/folder), access permissions are checked according to priority levels in the following order:

the element the user is trying to access has Direct permissions different from Inherited from the parent element.

The user who is trying to access the element has personal access permissions as a User, as well as access permissions as part of the Groups to which the user is included.

Type of the access right of the user who is trying to access the element: Owner, Can manage, Can edit, Can view, Access denied.

Priority levels:

1.The subordination of elements (folders and files). Shared objects can have two kinds of permissions: Direct and Inherited. The following applies to the embedded element:

If the Direct permissions are set, then they have a higher priority than the Inherited permissions of the parent folder.

If the Direct permissions have not been set, the element gets the Inherited access permissions from the parent folder.

2.Profile. Access to shared objects can be granted to individual Users and/or Group of users. That means that a user can have personal permissions of the User, as well as the permissions of the Group to which the user belongs, for the same element. The following also applies:

If a user has personal access permissions granted to a single User, they take precedence over the access permissions granted to a Group. For example, if a user has Can view permission and the group where the user is included has Can manage permission, then the user will only have Can view access permission.

If a user has no personal access permissions, but is a member of several Groups with different types of access permissions, the user gets the rights of the Group with the higher type of access permissions. For example, if one of the groups the user is included in has Can view permissions, and the other group has Can manage permissions, the user will have Can manage permissions.

3.Access permission type. Elements may be provided with the following types of permissions: Owner, Can view, Can edit, Can manage, Access denied:

The Owner access permissions have higher priority than Access denied.

The Access denied access permissions have higher priority than Can manage.

The Can manage access permissions have higher priority than Can edit.

The Can edit access permissions have higher priority than Can view.

Was this helpful?
Access permissions
Provide or change access permissions