public form security
Public Form protection from bots.
Public Form is very useful but it gives us a bit of unease to use it. it would be super if there would be some security preventive measures that is in place to protect the system when the form is open to public
Lala
shared this idea
-
G BAS
commented
Hi,
We needed security too with public forms.
Here's a tip we use so far to check if someone is allowed to use one of our public forms :
Create a File Cabinet with 2 fields : one for Users' Name/LastName (or any other ID), and one for User's password (more or less complex, as you need).
Give/communicate this couple of data to any user that is allowed to use your public Form.
Create an external select list based on this File Cabinet, using these two type of fields.
In your public Forms : add a single text line field that ask for the Password (all others fields masked by a behavior rule).
When password is entered by the user in this first single line text, another single line text field appears to ask the ID (Name/Last Name for example) : you can then use a behavior rule (or a validation rule) to be sure that this couple Password/ID is a real one (= one in your select list or "known" by Docuware). You can also just make your form checking if the password is known (with a behavior or a validation rule) to be more permissive : a lot of options are possibles at this point.I hope I've been clear enough to explain this tip : it works well for us to protect personal datas we could use in our Forms or Select Lists available in our Public Forms.
Regards