Manage Assets screen is accessible to both Admin and Author

We have both authors and admins in our organization. Admins manage access control like assigning permissions and creating shared folders etc. Authors utilize those things to create analyses and dashboards and later add them to specific shared folders. In our scenario, each shared folder represents a client so no matter whether people who are permitted one shared folder should not be able to access another shared folder. Here we registered clients as authors and given permissions to respective folders. In our scenario admins can see all the resources created through the Manage Assets feature. The author cannot access that page, but when copying the path to that page and pastes in the author’s logged browser he can able to access all data and able to delete them.

Manage Assets Link: https://{respective region}.quicksight.aws.amazon.com/sn/console/asset-management
Region: ap-south-1

When I log into the author’s account and paste the above link in the browser he can access all assets.

If this is supposed to happen, how should I handle my scenario?

Hi @masteronin99 and welcome to the QuickSight community!
Thank you for bringing this to attention, this sounds like a bug to me.
I would recommend filing a case with AWS Support to get further assistance from the support team.
If your company has someone who manages your AWS account, you might not have direct access to AWS Support and will need to raise an internal ticket to your IT team or whomever manages your AWS account.

Thank you for replying and addressing the issue.

We will raise a ticket for this.