Vulnerability in EPiServer.Forms
I wonder if there is a way to hide or disable all the available items in the menu displayed below?
As you can see, the user I’m logged in with only has access to Alloy Track, still I can download and copy files from folders I should not even be able to view in my opinion. But this is how it’s supposed to work according to Optimizely.
I thought maybe you could do some modification of the Dojo-files and scripts to accomplish this, but I don’t have any experience with that, so I wanted to check if anyone here has done something like this before?
You can go with dojo, to edit the editor. Just like hiding the Edit approval in the following article you can acheive whatever you want
You can go through the optimizely documentation on dojo toolkit for more information.
Thank you Praful! I'll give this a try :)