Hey everyone,
I’d like to request a feature, which allows me to handle visibility for certain groups / users inside their groups.
Users which are in the same group / class, should be able to see each other, but noone outside their class. I’d like to restrict users from seeing all created user-accounts on the instance, only admins should be allowed to see all user accounts and manage them.
If a users are in multiple groups, they can share their information with all people of the groups they’re part of.
In the listing of sharing passwords, they musn’t see people outside their ranges. 
Advantages would be :
Transparency / structured group management
less information for people without permission
,…
Users should be able to share passwords / folders with people they’re allowed to.
Best regarts
Cave
2 Likes
Seconded!
I was very surprised to see that a new non-admin user will see all other users and groups and their respective associations.
Definitely not what I expected and a show stopper for the way I intended to use the software.
Best,
McL
1 Like
After using the software a bit more, I found the Role-Based Access Control settings.
So apparently, setting “Can see with whom passwords are shared with” to "Deny" for the role User does the trick and the non-admin users no longer can see all other users and groups.
This was already discussed in https://community.passbolt.com/t/as-an-admin-i-do-not-want-my-users-to-see-all-users-on-the-platform/1151/19, sorry for not finding that first. 
For me, that takes the urgency out of the feature request, but I still agree with @cavechicken that implementing the original request in the scope of Role-Based Access Control would hugely benefit the application.
Best,
McL
Yeah that might help a bit, but wouldn’t it be better, if you can seperate / manage users by groups / departments,… so they can only see and share passwords to the people in common groups ?
1 Like
