Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Administrator can see restricted pages in browser but not in API

Anton
Anton December 5, 2021

I have a page P created by user A where he granted view+edit permissions to user B.

Now I have created user C and assigned him to the exact same groups as user B - one of these groups is "administrators".

 

The tricky part and where my question comes from:

When using user B:

  • I am able to see the restricted page in Confluence (via the browser)
  • I am able to see the restricted page via the REST API - when searching for all pages where "creator=A"

When using user C:

  • I am able to see the restricted page in Confluence (via the browser) ----> Why???
  • I am not able to see the restricted page via the REST API - when searching for all pages where "creator=A"

 

Can someone please explain why browser and REST API are behaving differently?

Answer
Watch
Like Be the first to like this
244 views

1 answer

0 votes
Darryl Lee
Darryl Lee
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
December 5, 2021

Hi - unfortunately it's a known bug:

CONFSERVER-62994 - When making CQL REST API calls on a parent page using the Confluence Admin account, pages that are restricted to not include the administrator account will not show in the API results. 

View More Comments
Anton
Anton December 7, 2021

Hi, thanks for the hint. I missed this one while browsing through the open issues.

However I cannot really consider this to be helping me further on because the workaround mentions that I can access the restricted child page directly via the API. That is fine but how can I retrieve the ID of the child page in the first place when I do not know it.
I just have the user provided. Any suggestion on this?

 

Thanks

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events