Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-8521

Admin can view a page, which is restricted to them by typing in the url to that page.

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Fix
    • Icon: High High
    • None
    • 2.5
    • None

    • Standalone Solaris 10 Unix with JDK 1.5

      When a group sets the permissions on a page to view and edit only for that group, the admin can view the page by typing in the url. This should not be the case. Many gourps want to post secure information and not allow the admin to view it.

      Knowing that the admin could remove the restrictions on the page and view the page is OK since we know that this could be detected. But the ability for them to type in the url to a page and view it isn't acceptable.

      I assume this affects all versions that allow page restrictions.

            [CONFSERVER-8521] Admin can view a page, which is restricted to them by typing in the url to that page.

            Katherine Yabut made changes -
            Workflow Original: JAC Bug Workflow v3 [ 2895979 ] New: CONFSERVER Bug Workflow v4 [ 2988412 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow v2 [ 2786919 ] New: JAC Bug Workflow v3 [ 2895979 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: JAC Bug Workflow [ 2718129 ] New: JAC Bug Workflow v2 [ 2786919 ]
            Owen made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2379794 ] New: JAC Bug Workflow [ 2718129 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 2270528 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2379794 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2215916 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 2270528 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2167270 ] New: Confluence Workflow - Public Facing - Restricted v5.1 - TEMP [ 2215916 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v5 [ 1925261 ] New: Confluence Workflow - Public Facing - Restricted v5 - TEMP [ 2167270 ]
            Katherine Yabut made changes -
            Workflow Original: Confluence Workflow - Public Facing - Restricted v3 [ 1727491 ] New: Confluence Workflow - Public Facing - Restricted v5 [ 1925261 ]
            Katherine Yabut made changes -
            Workflow Original: CONF Bug Subtask WF (TEMP) [ 1683644 ] New: Confluence Workflow - Public Facing - Restricted v3 [ 1727491 ]

              Unassigned Unassigned
              efe4717defd2 Matt Klein
              Affected customers:
              0 This affects my team
              Watchers:
              0 Start watching this issue

                Created:
                Updated:
                Resolved: