Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Low
Component/s: Permissions - Space
Labels:
- sam-request

Support reference count:
5
Symptom Severity:
Minor
UIS:
4

Issue Summary

When RBAC is enabled on a site, navigating to a space's User Management page fails to load users/groups if that space had any stale/invalid space permissions assigned to now deleted users/groups.

Steps to Reproduce

In an RBAC-enabled site, go to a space with invalid space permissions assigned to missing users/groups.
Navigate to the User Management page.
Observe that no users/groups load:

Expected Results

The User Management page should load without errors and display all users and groups with role assignments within the space.

Actual Results

The below exception is thrown: (Splunk logs)

java.lang.NullPointerException: Cannot invoke "com.atlassian.user.Group.getUsageType()" because "group" is null
com.atlassian.confluence.security.rbac.factory.SpaceRoleAssignmentFactory.getExpandedPrincipalType(SpaceRoleAssignmentFactory.java:97)
com.atlassian.confluence.security.rbac.factory.SpaceRoleAssignmentFactory.createSpaceRoleAssignmentCursor(SpaceRoleAssignmentFactory.java:81)
com.atlassian.confluence.security.rbac.factory.SpaceRoleAssignmentFactory.createSpaceRoleAssignmentWithCursor(SpaceRoleAssignmentFactory.java:68)
com.atlassian.confluence.security.rbac.factory.SpaceRoleAssignmentFactory.createSpaceRoleAssignmentWithCursor(SpaceRoleAssignmentFactory.java:73)
...
com.atlassian.confluence.security.rbac.factory.SpaceRoleAssignmentFactory$$EnhancerBySpringCGLIB$$d26ca1c5.createSpaceRoleAssignmentWithCursor(<generated>)
com.atlassian.confluence.security.rbac.service.RoleServiceImpl.lambda$fetchRoleAssignments_v1$63(RoleServiceImpl.java:1513)
...
com.atlassian.confluence.security.rbac.service.RoleServiceImpl.fetchRoleAssignments_v1(RoleServiceImpl.java:1523)
com.atlassian.confluence.security.rbac.service.RoleServiceImpl.fetchRoleAssignmentsByCriteria_v1(RoleServiceImpl.java:601)
...
com.atlassian.confluence.plugins.graphql.providers.spaceroleaccess.SpaceRolesAssignmentQueryProvider.spaceRoleAssignmentsByCriteria(SpaceRolesAssignmentQueryProvider.java:192)

Workaround

Check for invalid space permissions via Governator.
Soft-delete them via Governator.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List

screenshot_2026-01-20_at_8.39.28___pm.png
90 kB
21/Jan/2026 6:56 PM

Assignee:: Jacob Abraham
Reporter:: Spurthi Kulkarni
Votes:: 2 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: 21/Jan/2026 6:55 PM
Updated:: 06/Feb/2026 8:40 PM
Resolved:: 06/Feb/2026 8:40 PM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Workaround

Attachments

Attachments

Forms

Activity

People

Dates