User access control shelves, book, pages to be viewed by a group of users #2103

New Issue

Closed

opened 2026-02-05 02:54:48 +03:00 by OVERLORD · 4 comments

OVERLORD commented 2026-02-05 02:54:48 +03:00

Owner

Copy Link

Originally created by @deveasywork on GitHub (Feb 17, 2021).

Describe the feature you'd like
I want to allow users to login with "groups". They can view only books that are created by themselves or users from the same "group" only. Similar to access control in Google Drive. But I don't need to specifically specify which book can view by who etc. I looking more on control the access by group created

Describe the benefits this feature would bring to BookStack users
Allow department / groups to create documents to be shared among their team only. And not disclose to everyone else.

Additional context
Is there any existing features / workaround that I can use to implement this? I tried using role and limit to "Own" but that's only for post to created myself, I can't view pages from member of my group

Originally created by @deveasywork on GitHub (Feb 17, 2021). **Describe the feature you'd like** I want to allow users to login with "groups". They can view only books that are created by themselves or users from the same "group" only. Similar to access control in Google Drive. But I don't need to specifically specify which book can view by who etc. I looking more on control the access by group created **Describe the benefits this feature would bring to BookStack users** Allow department / groups to create documents to be shared among their team only. And not disclose to everyone else. **Additional context** Is there any existing features / workaround that I can use to implement this? I tried using role and limit to "Own" but that's only for post to created myself, I can't view pages from member of my group

OVERLORD closed this issue 2026-02-05 02:54:50 +03:00

OVERLORD commented 2026-02-05 02:54:57 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Feb 18, 2021):

Hi @deveasywork,

You should be able to limit permission per shelf/book/chapter/page via the "Permissions" option in the actions when viewing one of those items. Book & Chapter permissions will auto-cascade unless overridden. Are you looking for something different?

@ssddanbrown commented on GitHub (Feb 18, 2021): Hi @deveasywork, You should be able to limit permission per shelf/book/chapter/page via the "Permissions" option in the actions when viewing one of those items. Book & Chapter permissions will auto-cascade unless overridden. Are you looking for something different?

OVERLORD commented 2026-02-05 02:55:04 +03:00

Author

Owner

Copy Link

@deveasywork commented on GitHub (Feb 18, 2021):

Hi @ssddanbrown Thanks for replying.

I tried out by playing around with the the permission

To achieve what I want, I tried to group the content of departments ("group") by shelves

If login first time for that dept

• Create a shelf by dept name
• Create a role by dept name

Else

• Assign user to that role of dept

So in main menu, users will only see shelve of his own dept only.

But when create book, I still need to

• Set custom permission to that role of the dept
• Add book to dept shelve

Then only will he new book showing up in his "dept" shelves

However, I am doing all the above manually. To automate this, I will have to extend/modify the library code myself right? i.e. adding permission/shelves etc to database programatically when all the above actions are performed.

Thanks!

@deveasywork commented on GitHub (Feb 18, 2021): Hi @ssddanbrown Thanks for replying. I tried out by playing around with the the permission To achieve what I want, I tried to group the content of departments ("group") by shelves If login first time for that dept * Create a shelf by dept name * Create a role by dept name Else * Assign user to that role of dept So in main menu, users will only see shelve of his own dept only. But when create book, I still need to * Set custom permission to that role of the dept * Add book to dept shelve Then only will he new book showing up in his "dept" shelves However, I am doing all the above manually. To automate this, I will have to extend/modify the library code myself right? i.e. adding permission/shelves etc to database programatically when all the above actions are performed. Thanks!

OVERLORD commented 2026-02-05 02:55:07 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Feb 20, 2021):

However, I am doing all the above manually. To automate this, I will have to extend/modify the library code myself right? i.e. adding permission/shelves etc to database programatically when all the above actions are performed.

Yeah. You could automate the books/shelf creations via the API but you'd still need to do the permissions work manually. Additionally, if you create the book from within the shelf, it will automatically be assigned to the shelf. On the shelf, there's an option to copy the permissions to all books within, which may be faster that manually setting the book permissions each time.

It sounds like you generally would want some level of "Group Ownable" permissions but I'm hesitant to expand our permission offerings/complexities any further due to the complications they have in many operations.

@ssddanbrown commented on GitHub (Feb 20, 2021): > However, I am doing all the above manually. To automate this, I will have to extend/modify the library code myself right? i.e. adding permission/shelves etc to database programatically when all the above actions are performed. Yeah. You could automate the books/shelf creations via the API but you'd still need to do the permissions work manually. Additionally, if you create the book from within the shelf, it will automatically be assigned to the shelf. On the shelf, there's an option to copy the permissions to all books within, which may be faster that manually setting the book permissions each time. It sounds like you generally would want some level of "Group Ownable" permissions but I'm hesitant to expand our permission offerings/complexities any further due to the complications they have in many operations.

OVERLORD commented 2026-02-05 02:55:13 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Sep 19, 2021):

Since there's been no further discussion here I'm going to close this.

@ssddanbrown commented on GitHub (Sep 19, 2021): Since there's been no further discussion here I'm going to close this.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

development

further_theme_development

l10n_development

release

llm_only

vectors

v25-11

docker_env

drawio_rendering

user_permissions

ldap_host_failover

svg_image

prosemirror

captcha_example

fix/video-export

v25.12.3

v25.12.2

v25.12.1

v25.12

v25.11.6

v25.11.5

v25.11.4

v24.11.4

v25.11.3

v25.11.2

v25.11.1

v25.11

v25.07.3

v25.07.2

v25.07.1

v25.07

v25.05.2

v25.05.1

v25.05

v25.02.5

v25.02.4

v25.02.3

v25.02.2

v25.02.1

v25.02

v24.12.1

v24.12

v24.10.3

v24.10.2

v24.10.1

v24.10

v24.05.4

v24.05.3

v24.05.2

v24.05.1

v24.05

v24.02.3

v24.02.2

v24.02.1

v24.02

v23.12.3

v23.12.2

v23.12.1

v23.12

v23.10.4

v23.10.3

v23.10.2

v23.10.1

v23.10

v23.08.3

v23.08.2

v23.08.1

v23.08

v23.06.2

v23.06.1

v23.06

v23.05.2

v23.05.1

v23.05

v23.02.3

v23.02.2

v23.02.1

v23.02

v23.01.1

v23.01

v22.11.1

v22.11

v22.10.2

v22.10.1

v22.10

v22.09.1

v22.09

v22.07.3

v22.07.2

v22.07.1

v22.07

v22.06.2

v22.06.1

v22.06

v22.04.2

v22.04.1

v22.04

v22.03.1

v22.03

v22.02.3

v22.02.2

v22.02.1

v22.02

v21.12.5

v21.12.4

v21.12.3

v21.12.2

v21.12.1

v21.12

v21.11.3

v21.11.2

v21.11.1

v21.11

v21.10.3

v21.10.2

v21.10.1

v21.10

v21.08.6

v21.08.5

v21.08.4

v21.08.3

v21.08.2

v21.08.1

v21.08

v21.05.4

v21.05.3

v21.05.2

v21.05.1

v21.05

v21.04.6

v21.04.5

v21.04.4

v21.04.3

v21.04.2

v21.04.1

v21.04

v0.31.8

v0.31.7

v0.31.6

v0.31.5

v0.31.4

v0.31.3

v0.31.2

v0.31.1

v0.31.0

v0.30.7

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.29.2

v0.29.1

v0.29.0

v0.28.3

v0.28.2

v0.28.1

v0.28.0

v0.27.5

v0.27.4

v0.27.3

v0.27.2

v0.27.1

v0.27

v0.26.4

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.5

v0.25.4

v0.25.3

v0.25.2

v0.25.1

v0.25.0

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.0

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

0.7.2

v.0.7.1

v0.7.0

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

Labels

Clear labels

🎨 Design

📖 Docs Update

🐛 Bug

🐛 Bug

:cat2:🐈 Possible duplicate

💿 Database

☕ Open to discussion

💻 Front-End

🐕 Support

🚪 Authentication

🌍 Translations

🔌 API Task

🏭 Back-End

⛲ Upstream

🔨 Feature Request

🛠️ Enhancement

🛠️ Enhancement

🛠️ Enhancement

❤️ Happy feedback

🔒 Security

🔍 Pending Validation

💆 UX

📝 WYSIWYG Editor

🌔 Out of scope

🔩 API Request

:octocat: Admin/Meta

🖌️ View Customization

❓ Question

🚀 Priority

🛡️ Blocked

🚚 Export System

♿ A11y

🔧 Maintenance

> Markdown Editor

pull-request

Mirrored from GitHub Pull Request

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#2103