Are there known security risks when enabling the remote APIs in Confluence?


to link Confluence pages in JIRA the remote APIs need to be enabled. Are there any known issues connected to either linking Confluence and JIRA or enabling the APIs?

Any advice, point where to look or link to documentation is appreciated.



1 answer

1 accepted

0 votes
Accepted answer


I experienced this one:

Invalid name for a single Jira user made Confluence inaccessible for any user.

It also applies to Jira-Jira linking and Jira-Crowd.

More info:


Hi Andris,

Thank you for your answer. In our setup we're using delegated LDAP as user directory so that the issues you mentioned doesn't apply.

Are there other known issues when remote APIs are enabled?



LDAP may or may not solve that issue. If there will be wrong character in username in LDAP you will not be able to synchronize jira or confluence to jira instance which uses that particular LDAP.

We also had issue where by opening project in jira, project timeline showed all the last changes from confluence (not related to that project). I suggest to test it before you go to production. Probably it was caused by incorrect setup - not sure.

OK, I will keep that in mind.

Many thanks!

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Monday in Confluence

Organizing your space just got easier - Page Tree Drag & Drop is here

Hi Community! I’m Elaine, Confluence Product Manager. You may have read my earlier post about page tree in space navigation sidebar. I'm excited to share another improvement that helps you organize ...

77 views 3 3
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you