Improve file access management
Wild Apricot's file access management could be improved in two ways:
1. Separate file management privileges from the website editor privileges in the configuration of limited account administrators, i.e. provide a separate list allowing selection of directories in which an admin is permitted to manage files (parallel to the existing selection of pages for which an admin is authorized.
2. In the file management module, provide separate access levels for read, write and execute privileges.
I have found other suggestions here addressing parts of this problem, but feel that they do not go far enough. In particular, "Restrict access to files for different admin roles" has been marked "Resolved", but the resolution does not appear to cover the full scope of the issue.
-
Karen Halbert commented
I agree wholeheartedly that a good resolution to this issue should be found. It’s important that if we assign a member admin privileges for a specific page then we should be able to restrict folders or files also. I know that limited administrators can only delete their own files, but they should be restricted from viewing files in specified folders at the very least.