Details
-
Suggestion
-
Resolution: Unresolved
-
None
-
Confluence Pages with sensitive information in page source
-
1
-
Description
NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion.
Using several confluence macros (jiraissues, SQL, CHAR-Plugin etc.) needs to embedd sensitive information (UserID, Passwords, SQL-Statements, etc.). to the Confluence source pages.
Currently, there is no way to hide this information, because view page permission == view page source permission.
You can edit the layer templates to remove the 'page source' link, but the 'view source URL' will still work for anyone who can see the page.
The only way to hide this sensitive information is to prevent access to the Confluence Page Source.
This leads to the feature request to add a new permission type: "view page source" to be able to revoke access to the page sources.
Without this feature, Confluence pages are limited to non-sensitive information if you provide access for external parties like customers etc.
Attachments
Issue Links
- is related to
-
- Gathering Interest
- mentioned in
-
Page Loading...