[CONFSERVER-36072] Administrator role has access to restricted pages

Type: Bug
Resolution: Not a bug
Priority: High
Fix Version/s: None
Affects Version/s: 5.1.5
Component/s: None
Labels:
- affects-server
- security

Bug Fix Policy:
View Atlassian Server bug fix policy

Setting up e.g. a personal space and giving only the owner full access, anonymous access denied, some people (administrators?) still have access (can view, change permission and add comments). This is regardless of space or site restriction.

We are using the build-in security systems shared with JIRA v6.0.1.

This is a big issue for us, since confidential data has been made available to non eligible personal and we have hundreds of people all over the world using our setup which incl. several people with administrator rights.

Assignee:: Steve Haffenden (Inactive)

Reporter:: Benjamin Ebrahimi

Affected customers:: 1 This affects my team

Watchers:: 2 Start watching this issue

Created:: 08/Jan/2015 11:51 AM

Updated:: 11/Oct/2018 8:51 AM

Resolved:: 08/Jan/2015 9:40 PM

Confluence Data Center

Details

Description

Attachments

Forms

Activity

People

Dates