Here is my use case:
I have an operations Dashboard set up to display a bunch of data to a client outside of our company. We have viewer licenses for them. They need to be able to view all the data in the associated map layers in order for the Dashboard to be functional. However, we do not want them to be able to view all the layers and survey results in the Contents tab. We don't mind them seeing their data, but we're trying to keep the backend processes opaque.
Currently, I have custom groups and a user role set up such that when they click the "My Groups" tab under "Content" it only shows the dashboard. This is great, and eventually what we want to restrict their view to. However, clicking "My Organization" still displays all the individual layers/features used to populate the dashboard. This is what I would like to remove, but I don't see a way around it as if the feature is not shared with them it doesn't appear in their Dashboard view.
Hopefully I've made this clear, but please ask any clarifying questions if I haven't explained something well enough.
Hi Kieran Clark, thanks for providing the detailed use case here. There is not a custom role that can accomplish this at the moment, nor a setting in the security tab. Would the functionality you want be accurately characterized by "provide a custom role that disables viewing certain item types in the Content page, even if these items are shared with the user to give them access to the data in a Web Map or App."
In the meantime, a workaround might be to unshare the items with the organization and share them with the group only, but filter the default item view in the group to app. That way the end user would have to actively clear the filter to see the feature layers, and they wouldn't show up in the organization tab.
Hope that helps,