Confluence => db (know the user logged in)

Our security team would like to use a db firewall on the database,

For this firewall to work we will need to think of a way to add the user name that is logged in and doing the task to the query that is being sent to the db by the app.

Any ideas will be much appreciated. 

1 answer

1 vote

If I understand this question, what you want is that when a query is run, to tie it back to "the logged in user who caused it to happen", so you can firewall based on them.

This is not going to happen because it can't work without rewriting the whole of Confluence.

The database is abstracted away from the users.  There are queries that get run that simply aren't attributable to any specific user activities.  You'll need to insert code in all sorts of places to pass the user activity back to the database driver for using it, and you'll still end up with a need for a "system user" to catch all the queries that you can't track to an individual.  Finally, you'll need to consider what happens when a firewalled user attempts to write to the database.  Without a complete rewrite, you will end up with a corrupted database.

Suggest an answer

Log in or Sign up to answer
Atlassian Community Anniversary

Happy Anniversary, Atlassian Community!

This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.

Read more
Community showcase
Kesha Thillainayagam
Posted Apr 13, 2018 in Confluence

We want to hear how your non-technical teams are using Confluence!

Hi Community! Kesha (kay-sha) from the Confluence marketing team here! Can you share stories with us on how your non-technical (think Marketing, Sales, HR, legal, etc.) teams are using Confluen...

2,942 views 27 12
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you