Attachment Sharing and Security options
closed
Guy Mannerings
I wondered if there were any plans to address the security issue surrounding all attachments being publically available.
All attachments can be shared with a link, and, technically, guessed or accessed through bots.
The option to only keep a shared link for an hour before changing it isn't exactly secure, either, and also stops you sharing links that you want to keep shared for over an hour.
It also only applies to attachments uploaded after that option is turned on, and not any previously uploaded ones.
It is a bit of a concern, and it would be great to get proper attachment sharing management.
Log In
Louise Ewing
We are currently working on an option to have all attachments and Clips URLs behind Workspace authorization. This means that once we ship this functionality URL’s will only be accessible by users logged into your ClickUp Workspace.
This enhancement to how we manage attachments will be available on all ClickUp plans and will apply to both newly created and existing attachments.
We recommend following the Canny post linked below where our Product team is regularly posting updates.
Louise Ewing
closed
Louise Ewing
We are currently working on an option to have all attachments and Clips URLs behind Workspace authorization. This means that once we ship this functionality URL’s will only be accessible by users logged into your ClickUp Workspace.
This enhancement to how we manage attachments will be available on all ClickUp plans and will apply to both newly created and existing attachments.
We recommend following the Canny post linked below where our Product team is regularly posting updates.
Sydney
Merged in a post:
About file sharing/public sharing
Akane Hiura
Anyone can view attachments (attached to a task) without logging in by "Copy URL".
This is a feature of Private Attachment that allows the URL to be cut off in one hour, but the "Copy URL" itself cannot be disabled.
Our enterprise companies in Japan are concerned that there is no way to control this issue.
For instance, even files in private space can be viewed with URL access.
We appreciate if you could create a new feature and setting control.