All Categories
  • Authentication
  • Branding
  • Changelogs
  • Collaboration
  • Compliance
  • Customization
  • Desktop Client
  • External Storage
  • Frequently Asked Questions
  • Installation
  • Nextcloud Talk
  • Operations
  • Partner Products
  • Roundcubemail
  • Scalability
  • Security
  • Nextcloud and the "need-to-know" principle

    This principle states that a user shall only have access to the information that their job function requires, regardless of their security clearance level or other approvals.

    That means that by default, if no permissions are granted to a user, he/she cannot see or access any folder or file.

    Requirements

    Let's consider the following:

    ๐Ÿ‘ค a user U

    ๐Ÿ“‚ a group folder GF, that U can access.

    ๐Ÿ“‚ a folder F, located somewhere in the groupfolder GF.

    We want that, by default, U cannot access F (even if U has access to the groupfolder).
    For U to access F, a specific permission must be given to the user.