Visibility of Attachments via Attachment Categories
In our existing environment, we show every attachment to every user those are participating for the case.
Now, our customer is asking for hiding specific documents from some specific groups in organization. We are storing the group information of the user in our OperatorID page, so we can use this value in an easy way.
I thought that I should use attachment categories in order to implement this requirement.
I created one attachment category, and a simple when rule which consists of "allowed group" conditions.
Now the user in a specific group can add document with that document category as the others (who does not belong the user) can not view, edit or delete the document .. but they can see the document in the list even If they cannot do anything else with them.
What I want is not showing them to users.
So the question is,
What is the best practice to implement this? I may be missing a point in Attachment Category configuration...
I can customize the attachment area and do some visibility work on pyWorkAttachmentsFeedElement based on the attachment category but then this will not be good approach as this method is prone for problems for later requirements. (Some other ddepartments may ask similar things as I need to put more and more layout on pyWorkAttachmentsFeedElement section) ...
What do you think? Do we have a standard way to implement this? or should I go for customization like above?
I cannot think of anything else that you did not already think of.
I feel as though there should be an enhancement submitted to easily support what you are asking for. If not, just refactor the "view" privilege to not even show it in the list since you cannot open or "view" the attachment anyways.
I have found out that there is row visibility setting in the configuration of attachment grid (I am not sure why I missed that configuration at first!). When we create a proper when rule, the setting filters the documents in the list based on the attachment categories and user groups...
I have created that rule as it now looks for If there is a privileged attachment category(s) for that case. If there is privileged attachment category than I check the group code of the user, If it exists in the privileged user list property.