I encountered a Sharepoint security oddity with a document library. Basically, a user who does not have permission to access a folder within a document library can actually view the folder when he/she uses a particular link format. Note that it is using windows.open to open a window on a folder. See the different link format below:
This works

  ../Month%20End%20Reports/United%20States

And this does not work

/fin/performance/Month%20End%20Reports/Forms/AllItems.aspx?RootFolder=%2ffin%2fperformance%2fMonth%20End%20Reports%2fUnited%20States&FolderCTID=&View=%7b95361815%2d37A7%2d4C60%2dB549%2dB2CC1B28AB32%7d
  • Digg
  • del.icio.us
  • StumbleUpon
  • Sphinn
  • Facebook
  • Mixx
  • Google Bookmarks
  • Haohao
  • LinkedIn
  • Live
  • MyShare
  • MySpace
  • Reddit
  • Technorati
  • TwitThis

Related posts:

  1. Remove Alert or Options Message When Clicking Document Links in Sharepoint Document Library
  2. Firefox Problems with Sharepoint
  3. Sharepoint Document Libraries Wins over Network Shares
  4. Using Sharepoint Wiki Library to Collaborate on Content
  5. Manage Folder Permissions Where the Item Dropdown Menu is not Available in a Customized Sharepoint Site

Tags: , ,

Leave a Reply

You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> <pre lang="" line="" escaped="">