Restricting private views

In our applicationn we set the ACL for the default user to prevent the creation of personal views and folders. However, the user can still create private views and folders copying an existing view or folder. Is there any way to prevent the user from creating private views? If not, is there any way to prevent the user from copying one of the existing views or folders?

Download this free guide

Download: IT Certifications 101

Inside this exclusive essential guide, our independent experts break down which IT certifications are worth your time and effort, and how to get started obtaining them to further your career— including specific certifications that any cloud or desktop pro should seriously consider.

Start Download

• Corporate E-mail Address:

  You forgot to provide an Email Address.

  This email address doesn’t appear to be valid.

  This email address is already registered. Please login.

  You have exceeded the maximum character limit.

  Please provide a Corporate E-mail Address.

• • I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.

  Please check the box if you want to proceed.

• • I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.

  Please check the box if you want to proceed.

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent.

Anyone with Reader access (or higher) can create personal views and folders. The ACL option "create personal folders/views" just refers to where the personal folders/views are stored. If you select this option, personal folders/views are stored on the server (in the database). If you deselect this option, personal folders/views are stored in the user's desktop. The option is poorly worded and is a source of much confusion.

So, I don't believe that there is any way to prevent users from creating personal folders/views. (If anyone knows how, please let me know.)

This leads to a question though... Why do you want this restriction? Are you using views as a security method, by storing certain documents in certain views, and trying to prevent users from seeing these documents? If this is your reason, you should re-examine your security model. Restricting access to certain views (or forms) is not a security method. It is too easy to get around, in several ways.