Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-75184

Confluence does not invalidate session after a password change

    XMLWordPrintable

Details

    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      When a user changes their username via the UI the session cookie is not invalidated. For security purposes, all sessions should be invalidated and require the user to sign back in with the new password.

      Attachments

        Issue Links

          was cloned as

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-73502 Jira does not invalidate session after a password change

          • Low - Low priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              caronson Cole Aronson
              Votes:
              2 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: