I want to automatically login to Confluence with a fixed user/password? So not using SSO and not using anonymous.

Currently we are developing a cloud application. We would like to use Confluence Cloud for creating help pages for our own cloud application. We would like to create 2 spaces in Confluence. 1 space with internal documentation, user login is required for this space. The other space will contain the help text for our cloud application. Users that are logged on to our cloud application need read only access to this help space and are allowed to see everything in this space. But we do not want our help pages to be visible publicly from the internet. We do not want the users from our cloud application to have to login to be able to view the help text. But if we use anonymous login, then the space is visible to the world, which we do not want. Is it possible to create a generic help_user with read access to the entire Help space, and use a simple API to automatically login to confluence from our cloud application? A SSO solution is to complex. We do not want to have to setup a new user on confluence, every time our customers add a new user in our cloud application.

4 answers

your generic help_user will not help them - then they have to sign on either as themselves or as the help_user and then the generic help_user effectively becomes anonymous access as there is no prevention of the User remembering their log in after they leave your client's company, or posting it on facebook or wiki-leaks ...

Making sure each User has their own account ensures you have control over revoking their access when needed and gives them a sense of "confidentiality" and the "prestige" of being a trusted person - it is worth it!

The simple answer is grant your Users access to the two Spaces on the Cloud instance - they would only have view access to pages in the "Help Space".

One way of doing that is giving the Help Space access to the group "All Confluence Users" so every new User automatically is included in that group.

0 votes

Have you considered using Atlassian Connect to build a tight integration and solve this problem: connect.atlassian.com ?

I have the exact same problem, we used to pass the username and password as part of the URL (not ideal I know) but now that method of authentication has been forbidden by Atlassian. What's the alternative?

0 votes

You can try to use Oauth as explained in below tutorial:

Otherwise you can also use basic authentication or Cookie authentication (but this last one is at the moment affected by a bug tracked in: https://jira.atlassian.com/browse/JRA-63867 in this case you can use basic auth, intercept the cookie and then use it to authenticate the subsequent requests):

 

\\
Best Regards,
Dario
Atlassian Cloud Support

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Oct 24, 2018 in Confluence

Atlassian Research opportunity with Confluence templates

Do you use templates with Confluence? Take part in a remote 1-hr workshop. You'll receive USD $100 for your time!   We're looking for people to participate in a   remote 1-hr workshop...

921 views 13 11
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you