Sign in
Aras Innovator Platform
Aras Innovator Platform   File Handling

File Permissions

March 5, 2026 04:21 AM
2 min read

The permissions of a File Item are dependent on the Item containing that File, known as the File container. The File container is the Item which has a Property with a data source of the File ItemType. This includes relationship Items which have their related_id pointing to a File Item. This does not include Image properties used to display thumbnails on a Form. If a File has more than one container, the permissions will be based on the least restrictive access among all containers of the file.

There are two system File container objects that are used when a File is not referenced by any properties with a data source of the File ItemType. These are the “Orphaned Files Container” and the “Global Files Container”.

Files that are added with no container will automatically be placed in the Global Files Container, which allows Get for the World Identity. In other words, all Aras Innovator users will have access to these Files. In a standard implementation, this includes all Files stored in properties of type Image. To restrict access to these files, they can be added to another Item via a Property of type Item. Once added to another container, the File will be automatically removed from the Global Files Container and the containing Item will thereby define the permissions applied to the File.

Files that are originally added with a containing Item but are later orphaned in some way will automatically be placed in the Orphaned Files Container and will only be accessible to members of the File Administrators Identity. Members of the File Administrators Identity have unconditional access to all File Items. To restore access to these Files they can be added to another Item via a Property of type Item. Once added to another container, the File is automatically removed from the Orphaned Files Container and the containing Item will thereby define the permissions applied to the File.

In addition to the above permissions model, the following Variable Item may be defined to affect the global handling of files. This variable is not defined out of the box and a new Variable Item will need to be created if used. The Variable Item can be added in the Aras Innovator TOC Administration\Variables.

  • Force.Delete.Orphaned.Files

    • If the value is set to 1, all files which get added to the Orphaned Files Container will automatically be deleted from Aras Innovator and the Vault.
    • If the value is set to 0 or if the Variable does not exist, all files which get added to the Orphaned Files Container will remain in the system.
Previous Topic
Overview
Next Topic
File Handling User Interface