Need help in Custom Search Center Solution.

Question

Hi All,
My customer has asked for search center solution where

1. Anonymous user will able to search all documents in whole site collection.
2. Search should be performed on all the documents.  No security filter should be applied on the search result.
3. When user does click the individual document, system should show the login screen to user.
4. User will provide the credentials.
5. If user has access on document, document should be opened.
6. If user doesn’t have access on document then User will be shown a access request form which further have approval process.

Regarding the point 1 & 2, I suppose I have to write a custom security trimmer in which CheckAccess method will return true for all document Crawled Urls. Can anyone please confirm whether I am going in right direction?

I suppose I would be able to implement the point 4, 5 & 6 with custom code which should be fine.

However I am not able to figure out the solution for point 3. On the search result I have to implement the logic to redirect the control to login screen. Can anyone please help me on this?

Thanks in advanced.

Regards Amit K

Answer 1

I have one more question here, Site collection has more than 10 million documents so I suppose after crawling there will be more than 10 million documents URLs.  So I suppose in custom security trimmer, CheckAccess method will receive more then 10 million URLs. Will it be a problem, may be performance problem?

Answer 2

Can anyone please help me on this?

Answer 3

YOU MEAN HE SHOULD BE ABLE T FIND THE RESULT BUT HE SHOULD NOT BE ABLE TO OPEN IT ?

---

If the reply was helpful or informative, please remember to mark it as answer or vote as helpful. MCITP SHAREPOINT

IN THAT CASE SECURITY TRIMMER IS THE CORRECT CHOICE BUT I WOULD SUGGEST TO MAKE A SMALL TEST

Answer 4

REGARDING POINT 3 YOU ARE NOT SUPPOSED TO DO ANTHING WHEN THE USER CLICK IN A DOCUMENT HE DONT HAVE PERMISIION TO ACCESS A LOGIN PAGE WILL APPEAR BY DEFAULT

---

If the reply was helpful or informative, please remember to mark it as answer or vote as helpful. MCITP SHAREPOINT

Answer 5

CHECK ACCESS FUNCTION WILL ONLY DEAL WITH ITEMS THAT MEETS CRITEREA OF THE SEACRH I GUESS SO IT WONT BE 10 MILLION UNLESS YOU SEARCHED FOR EVERYTHING AND IN THAT CASE YOU SHOULD WORRY ABOUT RENDIRING IN ASP.NET FOR 10 MILLION LINK MUCH MORE

---

If the reply was helpful or informative, please remember to mark it as answer or vote as helpful. MCITP SHAREPOINT

Answer 6

I don't know whether, search scope is applied first or Check Access function or search criteria? do you know? 

if in case search scope & search criteria is applied first then there will not be much record however if check access is applied first then there will be a lot of records.

Regards Amit

Answer 7

You are correct, when user will access the document, system will redirect the user to login screen which is fine.  user will enter the credentials, if user have access on document, system will open the documents, i am ok with that.

However if user dont have access on document, OOB system will give access denied error to user. Here as per required functionality system should redirect user to a access request screen. Can you please help me on this?

Answer 8

As per the required functionality all the documents should be visible in search, it doesn’t matter whether user has access or not. If user doesn’t have access on document, user has to fill a request form. This request form will be routed to admin. Then admin will decide whether access of requested document has to be given to user or not.

Answer 9

Try to customize access denied page to be redirected to to request access is the source of the page is the search result

check how to customize access denied page its for moss 2007 but its the same idea for 2010

http://balajinjl.wordpress.com/2008/06/18/customizing-access-denied-page-in-moss-2007/

---

If the reply was helpful or informative, please remember to mark it as answer or vote as helpful. MCITP SHAREPOINT