Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Confluence => db (know the user logged in)

yaniv.shoshani
yaniv.shoshani June 28, 2017

Our security team would like to use a db firewall on the database,

For this firewall to work we will need to think of a way to add the user name that is logged in and doing the task to the query that is being sent to the db by the app.

Any ideas will be much appreciated. 

Answer
Watch
Like Be the first to like this
376 views

1 answer

1 vote
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
June 28, 2017

If I understand this question, what you want is that when a query is run, to tie it back to "the logged in user who caused it to happen", so you can firewall based on them.

This is not going to happen because it can't work without rewriting the whole of Confluence.

The database is abstracted away from the users.  There are queries that get run that simply aren't attributable to any specific user activities.  You'll need to insert code in all sorts of places to pass the user activity back to the database driver for using it, and you'll still end up with a need for a "system user" to catch all the queries that you can't track to an individual.  Finally, you'll need to consider what happens when a firewalled user attempts to write to the database.  Without a complete rewrite, you will end up with a corrupted database.

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events