Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-69023

Allow for option to hide usernames passed in logs and HTTP/S requests

XMLWordPrintable

    • Icon: Suggestion Suggestion
    • Resolution: Fixed
    • 7.10.0
    • Security
    • None
    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Currently Confluence passes usernames in the URL and HTTP request/responses, referrals and password reset for example. Basically anywhere the URL is logged which can be discovered through local browser histories as well as the applications logs etc.

      In sensitive environments where even admins should not have username details it would be useful to be able to switch the usernames to another unidentifiable parameter such as a UID in case of a locally compromised machine.

              Unassigned Unassigned
              dmark@atlassian.com Danny (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: