We consider how an individual item can be specified as private to one or more roles filled by qualified viewers.
An "owner" would be the logged-in owner of the origin from which a page and it's restricted item was retrieved.
Owner access would be automatic where as other well defined or ad-hoc roles would require specification on an item by item bases.
# Prototype
For demonstration purposes we will tag each private item with a list of roles that are allowed to view it. This could be in a "roles" attribute in the json item. A specialized editor will allow the owner to list roles allowed to view this image.
{ "type": "html", "id": "fadd97cd22bc4ee4", "text": "<table width=90%> ... </table>", "roles": ["physician", "family"] },
We might "encrypt" the text field by some mechanism presumably only reversible by permitted roles. We can simulate this by something as simple as rot(13).
If we did nothing else, the sample urinalysis from Selective Sharing would appear as gibberish.
PbybeLryybj cU5.3 TyhpbfrArtngvir, zt/qY CebgrvaArtngvir, zt/qY OybbqArtngvir Erq oybbq pryyf0 - 2 #/ucs Juvgr oybbq pryyf0 - 5 #/ucs uPT, hevar10,493 zVH/zy (Cbf)
Surely we can do better when we consider who might see this and deserve to see better.