Alex Mikheev

Everyday lots of people have to deal with agreements, contracts, budget plans, and other similar documents. In this regard, an ability to automate work with such files seems appealing. With this understanding in mind, ONLYOFFICE has been working on Smart Forms intended for optimization of file creation and collaboration in any document flow.

In our presentation, we’ll tell you about the newly introduced ONLYOFFICE Forms, new formats (DOCXF and OFORM) built with the purpose of creating standardized document templates and working with them through specifically designed interface elements in ONLYOFFICE Docs.

Presentation milestones:

• What's the difference between ONLYOFFICE Forms and Content Controls
• OFORM and DOCXF
• How Smart Forms work in ONLYOFFICE
• Form sharing
• Data protection in forms
• Creating and filling PDF files in ONLYOFFICE Docs
• Using ONLYOFFICE Forms in your infrastructure (e.g. Nextcloud, Alfresco, Redmine, etc.)
• Roadmap for smart form development

Nowadays, lots of users are concerned about the safety of their confidential data when it comes to online collaboration. And their concerns are fully justified.

So we at ONLYOFFICE, an open-source project with the focus on advanced and secure document processing, do our best to provide a comprehensive level of security for online doc editing and collaboration.

With GDPR compliant ONLYOFFICE Docs, you get a wide range of security tools and services to protect yourself from unauthorized access, data leaks, or insider actions. Self-hosted ONLYOFFICE can be installed on your own private server, so all your data always stays ‘in-house.’ The server level of data protection is implemented, among other things, with JSON Web Token and configurable cache lifetime. Important is, that no user data is stored on the ONLYOFFICE server. Besides, there are additional security features such as restriction on copying, downloading and printing, watermarking, flexible document permissions, etc.

The same applies to the integration of ONLYOFFICE Docs with other open-source services and platforms so that users of the combined solutions also get secure document editing and co-authoring.

To make your experience even more secure, last year we implemented:

• Custom filter access permission that allows hiding the data you don’t want to show before sharing your spreadsheet. In other words, users won’t be able to change the filter you’ve applied before sharing your spreadsheet and will be able to work only with the specified fields.

• Storage encryption so that you can protect data at rest against breaches. If the storage encryption option is enabled, all the files stored in your ONLYOFFICE will be encrypted using the Advanced Encryption Standard, symmetric block cipher, also known as Rijndael, that encrypt data blocks of 128 bits using symmetric keys of 256 bits.

• The first version of ONLYOFFICE Private Rooms, protected workplaces where every symbol you type is encrypted using the unbreakable AES-256 algorithm, even if you are co-editing documents with your teammates in real-time. Files that are created, stored and shared within a Private Room never leave the directory and cannot be copied, re-distributed, or decrypted. Document encryption and decryption is performed strictly on the user’s machine end-to-end.

Besides, we are now working on multi-functional secure forms for building any document template and secure form filling when your co-author is not permitted to see some parts of the doc.

ONLYOFFICE is an open-source HTML5-based office suite for editing and collaborating on text documents, spreadsheets, and presentations online. Here, maximizing format compatibility, establishing browser-agnostic content display and optimizing real-time data transfer in co-authoring are the core principles in building applicable editing software.

End user-side demand indicates that deeper integration in productivity solutions and content management applications is one of the main directions for ONLYOFFICE. We would like to share our experience in building connectors that allow users to edit and co-author their documents securely right within a platform they use.

Presentation milestones:

• Review of the technical basis of ONLYOFFICE editors (HTML5 Canvas, JavaScript, etc.);
• Open API that allows creating third-party connectors;
• Integration with content management platforms such as XWiki, Nextcloud, ownCloud (including connectors/integration apps development);
• Security measures (JSON Web Token, limited cache lifetime, etc.)
• Connecting desktop and mobile environments to content management platforms;
• ONLYOFFICE integration roadmap.