Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-23845

Allow LDAP users to be assigned to groups or permissions prior to initial log in

XMLWordPrintable

    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

      Currently in 3.5/4.0 permissions and group membership can only be assigned after a user logs in when using delegated LDAP

      Ideally, a Confluence admin could browse LDAP users and assign group membership and individual permissions/restrictions prior to the user logging in. This was possible in older versions of Confluence pre 3.5.

            [CONFSERVER-23845] Allow LDAP users to be assigned to groups or permissions prior to initial log in

            BillA added a comment -

            Thank you for raising this issue. While I can see how this feature would be useful, we have no plans to implement it in the foreseeable future. In order to set expectations, we're closing this request now.

            Thanks again for your idea.

            Bill Arconati,
            Group Product Manager

            BillA added a comment - Thank you for raising this issue. While I can see how this feature would be useful, we have no plans to implement it in the foreseeable future. In order to set expectations, we're closing this request now. Thanks again for your idea. Bill Arconati, Group Product Manager

            Leon Kolchinsky added a comment -

            More info for this issue could be found here - https://support.atlassian.com/browse/CSP-71237

            Also:
            It's a way to browse all users and groups in LDAP and add them to Confluence even before they've logged in (fixed your descriptions).
            When I say add to confluence I mean a mechanism to add them to "Space Permissions" and "Page Restrictions/Permissions" schemas.
            This is a must have functionality for proper users/group administration.

            Important: "user browser in Confluence" doesn't have to load all users/groups for LDAP directories (Probably a different button to browse External Directories might be implemented)!
            There should be a query functionality for that in Confluence and this should scale pretty well (looking for user's uid pattern or group cn pattern is a cheap and fast function).
            I'm fine with proposed timetable for that fix as long as it's on the devs to-do list.

            Leon Kolchinsky added a comment - More info for this issue could be found here - https://support.atlassian.com/browse/CSP-71237 Also: It's a way to browse all users and groups in LDAP and add them to Confluence even before they've logged in (fixed your descriptions). When I say add to confluence I mean a mechanism to add them to "Space Permissions" and "Page Restrictions/Permissions" schemas. This is a must have functionality for proper users/group administration. Important: "user browser in Confluence" doesn't have to load all users/groups for LDAP directories (Probably a different button to browse External Directories might be implemented)! There should be a query functionality for that in Confluence and this should scale pretty well (looking for user's uid pattern or group cn pattern is a cheap and fast function). I'm fine with proposed timetable for that fix as long as it's on the devs to-do list.

              Unassigned Unassigned
              mseager Michael S
              Votes:
              4 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: