1. Is front-end access limited in any way by default, e.g. you can't add categories from the front end?
2. Can you control which users/roles can do things using front end access? (Meaning control what users can do - not set up the control in the front end.
3. If a user with more access provides a hard link to a user without that access will the link work? In other words, does the built-in security make sure people can't share files by sharing the link to the file?