Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-30804

OAuth Administration screen is visible to anonymous users

    XMLWordPrintable

Details

    Description

      If anonymous user access is enabled under "Global Permission", user can access to "OAuth Administration" page without the need to log-in. Here is the URL to the page:

      <server-base-url>/plugins/servlet/oauth/view-consumer-info

      This page display Confluence administrators menu on the sidebar and other information such as:

      • Consumer Key
      • Name
      • Description
      • Public Key
      • Callback URL

      Attachments

        Activity

          People

            vvo Vu Truong Vo (Inactive)
            9df2cd731499 Bernd Lindner
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: