Maintaining Confidential Infopath Forms
+1
I am creating a process that requires that the infopath form remain confidential and that only the destination users have view rights to the form. The only problem that I see is that every user involved in the process needs to have access to the same temporary infopath file document library on a Sharepoint site. We've hidden this library away on a private site and have give each user access only to the library but any savvy user could potentially find the location of this library and find the undeleted temp files and view. Are there any suggestions on how to secure this process?
+3
Use a IIS virtual directory for temp storage instead and only assign rights to your K2 apppool identity. Using sharepoint integration for storing the tempfiles have no use anyways.
Reply
View our Community Site Map
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.