Select to view content in your preferred language

Attachment Privilege Control in Hosted Feature Layer Views

455
1
05-18-2023 08:52 AM
Status: Open
MobiusSnake
MVP Regular Contributor

I often use views as part of a data review process, where users can flag records as "reviewed" or "rejected" by setting an attribute value.  I typically give them access to that field along with a text field for review notes, while disabling adds, deletes, geometry updates, and updates to all other attributes.  I'd like them to be able to view attachments but as data reviewers they shouldn't be allowed to add new attachments or delete existing attachments, and I don't believe that's currently possible.  The best workaround I can come up with is to hide attachments on the editable view, while exposing a second read-only view with attachments visible (kind of clunky).

It would also be great to have views configured so that users could add new attachments, but block them from deleting existing attachments.  I believe this can be controlled in S123 forms but it would be preferable if it was enforced at the service level.

1 Comment
ChristopherCounsell

I created this idea to explicitly have the update capability allow attaching but not deleting photos:

https://community.esri.com/t5/arcgis-online-ideas/allow-users-to-add-attachments-but-not-delete/idi-...

Existing enterprise equivalent:

https://community.esri.com/t5/arcgis-enterprise-ideas/prevent-users-from-deleting-attachments-if-the...

The only fully functional workaround that is 'secure' is to use a related table with Create to collect records with photos attached to that. However, the photos then become difficult to see in the pop-up as they are not directly attached to the geometry layer. 

I'm not interested in survey form level control as the underlying data is theoretically still exposed, so a user with understanding of ArcGIS Online could go and delete photos.