After Revoke access for unlicensed users from Jira Service Management, Jira Service Management project admin can re-grant the privileges to users, allowing unlicensed users to access Confluence pages. This configuration in Jira will overwrite the configuration in Confluence, which is outside of the control of Confluence administrator.

Detail configurations and steps to reproduce the issue are below:
Application link:
The application links are created by using Oauth(impersonation) for both Jira and Confluence sides so the Jira project admin can create space from JSM project.

User directories:
Both Jira and Confluence owns local directory. 

Steps to reproduce the issue:

• Created a Jira Service Management project
• In Project Setting > Knowledge base > Link to a Confluence space> select Confluence > Create a knowledge base space to create a new knowledge
• After created knowledge base, the Access > Viewing settings in Jira has two options:
  • All active users and customers can access the knowledge base without a Confluence license.
  • Only licensed users who have access to the space
• By default: Only licensed users who have access to the space is ticked
• Tested with above users, only admin can view new knowledge base, jiraproadmin and customer1 cannot view the knowledge base
• Once tick All active users and customers can access the knowledge base without a Confluence license., all users can access the knowledge base which is unexpected

This feature has raised strong security concerns on the Confluence side. Therefore, we request that an option be added to disable the Jira project admin's privilege to overwrite Space privileges configurations.