How do I restrict access to the 'Forms Submissions' area of Episerver?

Vote:
 

Is it possible to restrict access to the 'Forms Submissions' area? In our implementation this section may contain sensitive information and we only want it to be shown to accounts with specific roles.

#186356
Dec 18, 2017 15:52
Vote:
 

Check out the "Restricting access to data" section here: https://world.episerver.com/documentation/developer-guides/forms/configuring-episerver-forms/

Episerver Forms stores its fundamental configuration in the  _protected/EPiServer.Forms/Forms.config file.

Restricting access to data

The following configuration restricts who is able to view submitted form data. Edit is the default; an editor should at least have Edit access rights on the form content to view SubmissionData.

minimumAccessRightLevelToReadFormData="Edit"

Suitable values for minimumAccessRightLevelToReadFormData are as follows:

NoAccess = 0, Read = 1, Create = 2, Edit = 4, Delete = 8, Publish = 16, Administer = 32, FullAccess = 63

For example, if you change the access rights to Publish, only a user who has Publish, Administer and FullAccess access rights on that form can see the SubmissionData.

#186383
Dec 19, 2017 0:33
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.