Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-40414

Expire all cookies functionality

XMLWordPrintable

    • Icon: Suggestion Suggestion
    • Resolution: Unresolved
    • None
    • None
    • None
    • 2
    • 13
    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

      Problem Definition

      Sometimes cached authentication data in Confluence prevents users from seeing updated changes (such as group memberships). To resolve this, users will need to log out, clear their cookies, and log back in.

      Suggested Solution

      Create an 'Expire all cookies' task that can be run by users in the scheduled jobs. There is already a task that does this for expired RememberMe tokens.

      Workaround

      Please follow these steps to expire all cookies in Confluence:
      Shutdown Confluence and backup your database before making any of these changes.

      1. Run the following on your database. This will set the 'created' date for the cookies to 11/01/2015 (in epoch time): 
        UPDATE remembermetoken SET created = 1446337357;
      2. Restart Confluence
      3. Go to -> cache management -> flush all
      4. Go to -> General configuration -> scheduled jobs -> Clear Expired Remember Me Tokens -> Run
        If you've set the rememberMe token expiration higher, you will need to create a new date using epoch time that exceeds that period.

          Form Name

            [CONFSERVER-40414] Expire all cookies functionality

            Max Blackmer added a comment -

            You do realize Jira has this feature, Why not confluence.  This is required in some Secure environments to flush these to force user login.  Same goes for Crowd Server.

            Max Blackmer added a comment - You do realize Jira has this feature, Why not confluence.  This is required in some Secure environments to flush these to force user login.  Same goes for Crowd Server.

            Adam Barnes (Inactive) added a comment -
            Atlassian update

            Thank you for raising this suggestion. We regret to inform you that due to limited demand, we have no plans to implement it in the foreseeable future. In order to set expectations, we're closing this request now. Sometimes potentially valuable tickets do get closed where the Summary or Description has not caught the attention of the community. If you feel that this suggestion is valuable, consider describing in more detail or outlining how this request will help you achieve your goals. We may then be able to provide better guidance. Thanks again.
            Regards,
            Confluence Product Management

            Adam Barnes (Inactive) added a comment - Atlassian update Thank you for raising this suggestion. We regret to inform you that due to limited demand, we have no plans to implement it in the foreseeable future. In order to set expectations, we're closing this request now. Sometimes potentially valuable tickets do get closed where the Summary or Description has not caught the attention of the community. If you feel that this suggestion is valuable, consider describing in more detail or outlining how this request will help you achieve your goals. We may then be able to provide better guidance. Thanks again. Regards, Confluence Product Management

              Unassigned Unassigned
              dponzio Daniel Ponzio
              Votes:
              20 Vote for this issue
              Watchers:
              18 Start watching this issue

                Created:
                Updated: