Problem Definition

Since Confluence 7.0.1, there is a change in <Confluence_Installation>/confluence/WEB-INF/classes/velocity.properties that includes a Secure Introspector to disable certain classes' accessibility.

This affected some of the User Macros created by the customers that is making use of the restricted class.
Here are some examples of the user macro being affected by this change, mostly related to getting user's information:

• https://community.developer.atlassian.com/t/problem-to-get-about-me-information-from-user-details-after-confluence-7-update/35258
• https://community.developer.atlassian.com/t/confluence-user-details-from-macro-in-7-1-1/34543
• https://community.developer.atlassian.com/t/defaultuserdetailsmanager-does-not-work-in-user-macro-confluence-server-7-3-1/35751
• https://community.developer.atlassian.com/t/cant-use-contentpropertymanager-anymore-in-user-macro-since-7-0-3/32956/3

Suggested Solution

There is no alternative way to obtain user information after the change has been implemented. As this change is based on a security measure, it is not recommended to make any custom changes to the velocity.properties.

Suggesting to have an alternative way to obtain the user information so that the customers can continue to have custom User Macro that is able to pull user's information