mark-dce
commented
6 years ago @bess @shanitajohn - Isn't this kind of a security risk that we need to prioritize even if Emory hasn't? I.E. does this become a critical urgent priority the minute files are exposed that should be embargoed?
If an embargo is in place, don't allow an unauthorized user to go directly to the show page for the embargoed file set, even if they somehow know the noid of that file set