Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-22563

Members of confluence-administrators receive notifications for comments and attachments on restricted pages

    XMLWordPrintable

Details

    Description

      Members of the special confluence-administrators group have access to all content on the site, however they should not see restricted content in search results or get notifications about changes on restricted pages.

      There is a bug in the permission check for notifications about "contained" objects (comments and attachments) that result in the isSuperuser() check applying when these notifications are triggered by a space or network watch. This means members of confluence-administrators are emailed information that they are allowed to see, but should not be notified about.

      This was introduced by my changes around super-user checking in CONF-18073, in Confluence 3.5.

      Attachments

        Issue Links

          is caused by

          Suggestion - CONFSERVER-18073 Cache result of isSuperUser check in permission handling

          • Closed

          Activity

            People

              matt@atlassian.com Matt Ryall
              matt@atlassian.com Matt Ryall
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: