Emory Digital Collections: Access Controls

Owned by Emily Porter
Last updated: Feb 07, 2022
3 min read

Overview

The implementation team established a set of standardized access control settings for the Cor repository. These access control scenarios are outlined in the Decision Document from 2019, which identified required tiers across the Libraries and Carlos museum.

Access Control Tiers Implemented in Phase 1

The following access control tiers were prioritized as the highest priority and were implemented as required for content migrated in Phase 1 of development.

Summary of Access Controls and Display Behaviors

See also the linked matrix for a visual summary of access control behaviors in Lux. 

Public

  • Authentication: 
    • None
  • Search Results:
    • Item summary visible
    • Original thumbnails display
    • Item pages available to all users
  • Universal Viewer:
    • Delivers high resolution images
    • Full zoom
    • Download, Share, Embed options visible

Public Low View

  • Authentication: 
    • None
  • Search Results:
    • Item summary visible
    • Original thumbnails display
    • Item pages available to all users
  • Universal Viewer:
    • Delivers low resolution images
    • Limited zoom
    • No Download, Share, Embed options
    • No full-screen option

Emory High Download

  • Authentication: 
    • Emory Network ID, Shibboleth
  • Search Results:
    • Item summary visible
    • Original thumbnails display when logged in
    • Login required thumbnail displays to public
    • Item pages cannot be seen unless logged in
  • Universal Viewer:
    • Delivers high resolution images
    • Full zoom
    • Download, Share, Embed options

Emory Low Download

  • Authentication: 
    • Emory Network ID, Shibboleth
  • Search Results:
    • Item summary visible
    • Original thumbnails display when logged in
    • Login Required thumbnail displays to public
    • Item pages restricted unless logged in
  • Universal Viewer:
    • Delivers low resolution images
    • Limited zoom
    • Download, Share, Embed options
    • Download size restricted to 400px high

Rose High View

  • Authentication: 
    • IP address verification
  • Search Results:
    • Item summary visible
    • Reading Room thumbnail displays to public
    • Original thumbnails display to allowed IPs
    • Item pages restricted to allowed IPs only
  • Universal Viewer:
    • Delivers high resolution images
    • Full zoom
    • Download, Share, Embed options disabled
  • Additional Notes
    • Users in the Reading Room may also view other material depending on whether or not they have Emory logins.

Private

  • Authentication: 
    • Individual Curate user + collection group permissions
  • Search results (Curate product only):
    • Item summary visible
    • Original thumbnails display
    • Item pages restricted to allowed users/groups
  • Universal Viewer (Curate product only):
    • Delivers high resolution images
    • Full zoom enabled
    • Download, Share, Embed options enabled
  • Additional notes:
    • Items marked Private are not discoverable in the Emory Digital Collections (“Lux”) interface; they are only visible to specific users in the Curate application.


Additional Access Controls: Not Yet Implemented

The following access control tiers were identified in the original Decision Document, but were not needed for Phase 1 collections. These access controls will be developed in future releases of Curate.

Additional Reading Room-based IP restrictions

Additional Libraries may have IP addresses configured to restrict material to specific computers. This setting will be configured based on the current Rose High View access control.

Emory High View

This access control, when implemented, will restrict viewing of material to users with Emory login credentials. This setting will be configured similarly to the Rose High View access control, but without the IP-based authorization.  

Emory Low View

This access control, when implemented, will restrict viewing of material to users with Emory login credentials. This setting will be configured similarly to the Public Low View access control, but adds Emory Shibboleth authentication.  

Assigning Access Controls

  • Access Controls are assigned through the Curate product as part of the bulk-import process. 
  • Collection managers identify the initial settings in the visibility column of the work-level ingest CSV.
  • Preservation Event metadata records the original Visibility setting at time of ingest.
  • The initial access control assigned at the time of ingest can be changed using a bulk metadata refresh, or may be manually edited in Curate using the Edit Work form.

Takedown Requests, Decommissioning/Deleting Material

For more information, review the Emory Libraries’ Digital Collections Copyright and Content Policy

In the event of a takedown request, Scholarly Communications Office and LTDS will coordinate a review. In some cases, this may require changing the original Visibility level (access controls) assigned to the material in Curate. LTDS will process any deletions or decommissioning scenarios as outlined in the Digital Preservation Retention Policy.