tappo_scritta.png

CLICK QUI 

per avere indicazioni su come prenotare il test del Coronavirus

COVID-19 

Corner

tappodx.png

Reserved Files Block

Is it possible to manage the sharing of highly sensitive documents with Concrete5 ?

C5 gives the possibility to share documents throught standard file manager and/or the "Document Library" block, but does not anonymize or crypt files when storing them on server, and sooner or later spiders can discover them and show them to not authorized people.

In addition it is not easy to configure permission for users for only upload files in specifc folders, without giving them file manager permissions; so for example  its a lot of trouble and work if you just want only give a group the ability to load and share documents. 

Reserved Files block intends to give the possibility to allowed group to upload the files to be shared, at the same time anonymizing and/or encrypting these files with a password (AES crypting) as part of the process and storing them in specified folder.

All the files are stored in a specific folder (defined from administrator when setting up the block) and the files are named with a meaningless name and no extension, while the friendly name and the folder hierarchy is maintained in the database.  Naming the files on disk with a meaningless name makes it impossible or at least extremely difficult to guess the file name and the crypting option makes it impossible to open it in original mode.

When a Reserved Files block is placed on a page (done by administrators only):

  • Users in roles that have permissions to view the page can download the files because the module is configured to serve them converting the file name back to the friendly name and unencrypting them on the way.  
  • User's in role that can manage the files are able to upload/delete files and create/delete folders.

For both type of users the navigation between folder is ensured by a breadcrump rappresentation of folders structure.

 

The block has been developed and tested on 8.5.1 enviroment, but should work on any version > 5.7 using PHP > 5.3

STEP 1 - add and configure the block

STEP 2 - Add files and folders

Below is an image on how Reserved Files block appears to user's in role that can manage the files and folders (as said before, the group will be defined by administrators in edit mode)

edit.PNG

Below is an image on how Reserved Files block appears to user's in role that can only navigate and download files

view.PNG