Hello,
I have installed Passbolt on my server and have been using it for a few months. However, I am facing a major issue: as an admin, I cannot see which passwords have been shared with a specific user.
This feature is essential in organizational settings, especially when an employee leaves the company. As an admin, I need to be able to see which passwords a user has access to so I can manage their permissions.
Does such a feature exist?
Hello @seyed.it , thanks for sharing your concerns. This can be discussed on our side, it looks like it might be related to admin reports.
In the meantime as a workaround, I’ve played a bit with MySQL and I may have found a query that could help you identifying the differents permissions owner on the resources.
(Warning, you will have one row per permissions/users for the resources. So if you have three permissions on one password, you will get three rows so depending on your instance, you can expect a lot of outputs.)
SELECT r.name AS resource_name, CASE WHEN p.aro = 'User' THEN u.username WHEN p.aro = 'Group' THEN g.name END AS shared_with, p.type AS permission_level FROM resources r LEFT JOIN permissions p ON r.id = p.aco_foreign_key LEFT JOIN users u ON p.aro = 'User' AND p.aro_foreign_key = u.id LEFT JOIN groups g ON p.aro = 'Group' AND p.aro_foreign_key = g.id WHERE p.aco = 'Resource' ORDER BY r.name, shared_with;
Feel free to optimize the query as per your needs.
Please, note that the permisisons are listed as follow:
I hope it helps.
Best regards