We would like to give access to external Users to our Knowledge Base (KB), but would require them to be authenticated against our B2C identity provider (Auth0). We would like to give them access to certain parts of KB (e.g. only public tagged content).
In the other hand, for our internal employees, authenticated against Google, we would like them to have access to all resources of the KB.
Knowing we projecting to scale our solution and serving thousands of customers, creating Confluence accounts for every new external User does seem costly.
Is there a way we can segregate access, and support this kind of scenario?
Hi @Jerome Schmaltz,
Welcome to the community!
It sounds like Scroll Viewport for Confluence, an app by my team at K15t, could be exactly what you need. It allows you to create sites and publish your Confluence content as real websites. Sites can be set up to require SAML authentication which should work well with Auth0. This does not require readers of your site to have a Confluence account - they merely need to authenticate against your identity provider .
The best way for you to go here could be to set up two authenticated sites: one for your internal employees and one for your external users. If you want to curate the content for these two different sites in the same Confluence space, you may also want to have a look at our other apps Scroll Documents and Variants for Scroll Documents.
Using those, you could create an "internal" and a "public" variant. This means for example only pages having a "public" label will belong to the public variant, which you can then publish through Scroll Viewport. In fact, you can even manage which content should appear in what variant on a paragraph level, using the Scroll Conditional Content macro.
Hope this helps! If you have any questions let me know. :)
Thanks for answering @Sven Schatter _K15t_ , I'll have a look at the tools/apps you're suggesting. That might resolve the licensing issue.
One question though, regarding Scrollview, how's the export is triggered? Is it a manual process? Can it be on new content, or content changed (e.g. event-based)?
Hi @Jerome Schmaltz,
At the moment, Scroll Viewport requires you to manually start the updating process. It will generate a preview site for you on which you can see how the content from Confluence is presented in Viewport. If you like it, then you can go live with the press of another button. You can find more details in our documentation about this topic.
We are currently also looking into how we can support other types of workflows, such as an event-based updating flow like you mentioned. But it will still take us some time to come up with a concrete solution there.
This sounds somewhat similar to what a previous company of mine did, albeit via Okta authentication and not Auth0: having the majority of the Confluence site (all spaces) accessible to employees through SSO and then only one customer-facing space. I was not involved in the implementation, but I believe this was achieved by Confluence treating each customer login as a single user. Sorry that I can't provide more help or specifics, but I did just want to say that it should be possible with the right technical know-how. Good luck!
Hi everyone, We’re always looking at how to improve Confluence and customer feedback plays an important role in making sure we're investing in the areas that will bring the most value to the most c...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events