As of Confluence 5.2.3, since the quicknav search is using the rest API for quicknav searches, unauthenticated users are unable to search. Quicknav search worked as expected as of 5.1.4, but in our upgrade to 5.2.3 it broke this for unauthorized users. In 5.2.3, requests to rest/quicknav/1/search?query=QUERY receive a '401 Unauthorized' response, with the body '

      {"message":"Client must be authenticated to access this resource.","status-code":401}

      '. The full search page does work for anonymous users, but not the quicknav autocomplete functionality.

      No settings or anything were changed on our end between 5.1.4 (quicknav search working) and the upgrade to 5.2.3 (quicknav serch broken).

      As a workaround, I locally patched the Confluence-Quicknav bundled plugin, using the Confluence Rest plugin as a reference. In the QuickNavResource.java file (com.atlassian.confluence.plugins.quicknav.resources package) I imported com.atlassian.plugins.rest.common.security.AnonymousAllowed and added @AnonymousAllowed. After rebuilding, anonymous users were able to search. However, I am unaware of whether there are any ramifications of this.

      EDIT:
      I'll note we're using the EAR/WAR release, and auth is done using the Confluence HTTP Authenticator (https://marketplace.atlassian.com/plugins/shibauth.confluence.authentication.shibboleth).

            [CONFSERVER-30591] Anonymous Search Errors

            Katherine Yabut made changes -
            Workflow Original: JAC Bug Workflow v3 [ 2890713 ] New: CONFSERVER Bug Workflow v4 [ 2982954 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow v2 [ 2774960 ] New: JAC Bug Workflow v3 [ 2890713 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow [ 2735440 ] New: JAC Bug Workflow v2 [ 2774960 ]
            Owen made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2400922 ] New: JAC Bug Workflow [ 2735440 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 2300756 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2400922 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2234738 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 2300756 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2197490 ] New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2234738 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 1923781 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2197490 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v3 [ 1732349 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 1923781 ]
            Katherine Yabut made changes -
            Workflow Original: CONF Bug Subtask WF (TEMP) [ 1688067 ] New: Confluence Workflow - Public Facing - Restricted v3 [ 1732349 ]

              rmassaioli Robert Massaioli (Atlassian)
              cf6a072c3d41 William Schneider
              Affected customers:
              7 This affects my team
              Watchers:
              14 Start watching this issue

                Created:
                Updated:
                Resolved: