[CWD-1182] Do not allow actions that will lock out admin access

Type: Suggestion
Resolution: Low Engagement
Fix Version/s: None
Component/s: Core features, User Console
Labels:

Support reference count:
6
Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

We should not allow Crowd admins to be able to:

delete themselves
remove themselves from the admin group
delete the admin group from the directory they belong in
delete the directory they belong to

This should help reduce the possibility of admins locking themselves out of Crowd.

causes

CWD-1774 Text for Crowd console lockout error messages

Closed

details

CWD-1572 Make sure the current user cannot delete themselves from Crowd

Closed

CWD-1575 Make sure the current Console administrator cannot remove themselves from a group that will no longer make them a console administrator

Closed

CWD-1576 Make sure the current Console administrator cannot delete a directory they are currently authenticated from

Closed

CWD-1577 Make sure the current Console Administrator cannot unassign a directory from the Crowd console that would remove them as a Crowd administrator

Closed

CWD-1626 Make sure the current Console Administrator cannot unassign a group from the Crowd console that would stop them accessing the console.

Closed

CWD-1687 Make sure that the Admin will not Apply the Self-Service Console configuration to the crowd-administrators group/directory

Closed

CWD-1720 Crowd Clients may delete Crowd administrators, to the point where there are no Crowd administrators

Closed

CWD-1918 Make sure that the Admin will not enable *Secure SSO Cookie* if the web console is not being accessed via HTTPS

Closed

CWD-1975 Autodetect the new IP (for the Remote Address list) when restoring a xml backup into a new machine

Closed

is duplicated by

CWD-1042 Investigate administration improvements to avoid Crowd console lock-outs

Closed

mentioned in: Page Loading...; Wiki Page Loading...; Wiki Page Loading...; Wiki Page Loading...

(5 details, 1 is duplicated by, 4 mentioned in)

Aakrity Tibrewal added a comment - 27/Apr/2025 12:39 PM

Atlassian Update - 27 April 2025

Hello,

Thank you for submitting this suggestion. We appreciate you taking the time to share your ideas for improving our products, as many features and functions come from valued customers such as yourself.

Atlassian is committed to enhancing the security and compliance of our Data Center products, with an emphasis on sustainable scalability and improving the product experience for both administrators and end-users. We periodically review older suggestions to ensure we're focusing on the most relevant feedback. This suggestion is being closed due to a lack of engagement in the last four years, including no new watchers, votes, or comments. This inactivity suggests a low impact. Therefore, this suggestion is not in consideration for our future roadmap.

Please note the comments on this thread are not being monitored.

You can read more about our approach to highly voted suggestions here and how we prioritize what to implement here.

To learn more about our recent investments in Crowd Data Center, please check our public roadmap.

Kind regards,
Crowd Data Center

Aakrity Tibrewal added a comment - 27/Apr/2025 12:39 PM Atlassian Update - 27 April 2025 Hello, Thank you for submitting this suggestion. We appreciate you taking the time to share your ideas for improving our products, as many features and functions come from valued customers such as yourself. Atlassian is committed to enhancing the security and compliance of our Data Center products, with an emphasis on sustainable scalability and improving the product experience for both administrators and end-users. We periodically review older suggestions to ensure we're focusing on the most relevant feedback. This suggestion is being closed due to a lack of engagement in the last four years , including no new watchers, votes, or comments. This inactivity suggests a low impact. Therefore, this suggestion is not in consideration for our future roadmap. Please note the comments on this thread are not being monitored. You can read more about our approach to highly voted suggestions here and how we prioritize what to implement here. To learn more about our recent investments in Crowd Data Center, please check our public roadmap . Kind regards, Crowd Data Center

Mark Lassau (Inactive) added a comment - 25/Nov/2012 10:30 PM

Not sure how directory order works in Crowd Admins (multiple applications).
However, in JIRA we also have a check that if they swap directory order and the current account gets shadowed, do they still have admin access.

Mark Lassau (Inactive) added a comment - 25/Nov/2012 10:30 PM Not sure how directory order works in Crowd Admins (multiple applications). However, in JIRA we also have a check that if they swap directory order and the current account gets shadowed, do they still have admin access.

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Aakrity Tibrewal added a comment - 27/Apr/2025 12:39 PM

Expand comment: Aakrity Tibrewal added a comment - 27/Apr/2025 12:39 PM

Collapse comment: Mark Lassau (Inactive) added a comment - 25/Nov/2012 10:30 PM

Expand comment: Mark Lassau (Inactive) added a comment - 25/Nov/2012 10:30 PM

People

Dates