Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-21022

Provide option to return unauthorized message rather than 404 when user does not have permissions for page

    XMLWordPrintable

Details

    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Related to CONF-7073, this is what an unauthorized message is for. Users should be given the option to choose the behavior since Atlassian is straying from the normal behavior of the web when a user doesn't have access (by returning a 404).

      Its bizarre to default an invalid permission issue to a false 404 message.

      In our instance we a have reverse proxy which handles error messages for us, and this invalid error message confuses everything and everybody.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-9239 "Page not found" (404) is displayed to users without view permissions, should be "Access denied"

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              149f0066356f steve heine
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: