evilaliv3
commented
9 months ago Thank you @larrykind
This is definitely an interesting feature probably already discussed in some other tickets over the time. It is not easy to be iplemented but lets see.
I would decouple from the analysis the specific permission to give because you say that you want the access to be read only but maybe depending on the the user could support some duties.
It is interesting to make the access expire (i'm not sure if with a deadline or with the report or when manually removed by other normal recipients)
For being able to create a user and at the same exact time grant access to them we need escrow keys to be enabled into the system.
An other topic to discuss is if these users should be able to access only this report or since the creation of the user they should become possible to add them to other reports as well. This could serve other use cases and simplify use but in this case.
Lets see what other members of the community think.
larrykind
danielvaknine
Proposal
This proposal is about the creation of temporary / one-shot users that will be able to access a specific report with restricted rights, as for example read-only, share-only. The tenant admin or user that can create this kind of users will set the duration of the access and the rights of the temporary user. Thank you for considering it.
Motivation and context
The goal is the possibility to temporarily share with "externals" expert counsultants the access to a single report. The consultant can upload documents and comments about a report using the globaleaks security features, instead of sharing in a less-secure way.