Modern SharePoint Security Trimming or Audience Targeting

%3CLINGO-SUB%20id%3D%22lingo-sub-797941%22%20slang%3D%22en-US%22%3EModern%20SharePoint%20Security%20Trimming%20or%20Audience%20Targeting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-797941%22%20slang%3D%22en-US%22%3E%3CP%3EHello%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EEnvironment%3A%20Modern%20SharePoint%20Online%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhen%20I%20break%20inheritance%20on%20a%20library%20or%20list%20and%20apply%20specific%20permissions%20to%20it%20and%20then%20create%20a%20link%20in%20the%20local%20navigation%20area%2C%20everyone%20is%20still%20able%20to%20see%20the%20link%20in%20local%20navigation.%20When%20a%20user%20without%20access%20uses%20the%20link%2C%20it%20dumps%20them%20in%20the%20library%20but%20nothing%20is%20shown%20to%20them.%20In%20classic%20SharePoint%2C%20the%20local%20navigation%20link%20would%20not%20even%20show%20up.%20Why%20does%20it%20show%20in%20Modern%20SharePoint.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EA%20side%20note%2C%20what%20happen%20to%20audience%20targeting%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-797941%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EDocument%20Library%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESharePoint%20Online%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-797978%22%20slang%3D%22en-US%22%3ERe%3A%20Modern%20SharePoint%20Security%20Trimming%20or%20Audience%20Targeting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-797978%22%20slang%3D%22en-US%22%3Eif%20you%20are%20using%20default%20navigation%20in%20your%20modern%20sites%2C%20that's%20expected%20since%20the%20navigation%20in%20modern%20sites%20is%20not%20security%20trimmed%20and%20therefore%20not%20aware%20of%20any%20change%20you%20can%20make%20in%20regards%20of%20permissions%20in%20your%20sites%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-797980%22%20slang%3D%22en-US%22%3ERe%3A%20Modern%20SharePoint%20Security%20Trimming%20or%20Audience%20Targeting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-797980%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F60%22%20target%3D%22_blank%22%3E%40Juan%20Carlos%20Gonz%C3%A1lez%20Mart%C3%ADn%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20is%20there%20a%20workaround%3F%3C%2FP%3E%3CP%3EWhy%20does%20the%20library%20allow%20a%20person%20into%20the%20library%20that%20does%20not%20have%20permissions%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-798506%22%20slang%3D%22en-US%22%3ERe%3A%20Modern%20SharePoint%20Security%20Trimming%20or%20Audience%20Targeting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-798506%22%20slang%3D%22en-US%22%3ENo%20work%20around%20yet%20they%E2%80%99ve%20been%20talking%20about%20it.%20Modern%20libraries%20work%20different.%20It%E2%80%99s%20probabaly%20the%20new%20default%20behavior.%20Audience%20targeting%20is%20coming%20but%20to%20a%20small%20degree.%20Mostly%20with%20news%20web%20parts%20and%20maybe%20highlighted%20content.%20Not%20sure%20where%20else%20because%20we%20are%20still%20waiting%20on%20it%20to%20go%20live%20(it%E2%80%99s%20a%20few%20months%20late%20already).%3C%2FLINGO-BODY%3E
Highlighted
Contributor

Hello,

 

Environment: Modern SharePoint Online

 

When I break inheritance on a library or list and apply specific permissions to it and then create a link in the local navigation area, everyone is still able to see the link in local navigation. When a user without access uses the link, it dumps them in the library but nothing is shown to them. In classic SharePoint, the local navigation link would not even show up. Why does it show in Modern SharePoint.

 

A side note, what happen to audience targeting? 

3 Replies
Highlighted
if you are using default navigation in your modern sites, that's expected since the navigation in modern sites is not security trimmed and therefore not aware of any change you can make in regards of permissions in your sites
Highlighted

@Juan Carlos González Martín 

 

So is there a workaround?

Why does the library allow a person into the library that does not have permissions?

Highlighted
No work around yet they’ve been talking about it. Modern libraries work different. It’s probabaly the new default behavior. Audience targeting is coming but to a small degree. Mostly with news web parts and maybe highlighted content. Not sure where else because we are still waiting on it to go live (it’s a few months late already).