You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
Is there a way that I can prevent an anonymous user from creating content? I have the global permissions and space permissions set to only view. However, when an anonymous user clicks the create button, they can create a page. I would like to use my space as a Knowledgebase for my domain users, but I don't want them creating documents.
Yes, If you have properly configured the permissions of Anonymous.
The problem is Demo Space.
Remove it and the button create will hidden.
Yes, check the space permissions and make sure "anonymous" has no rights other than "read".
If you think you've done that, then we're going to need to see the permissions for a space where you think anonymous users can post.
Ok, looks good, can you show us all the permissions for the space (fuzz over any user names that might be in there, and parts of group names, if you have any security worries. We only need the full list and an idea of the rules about who can do what, not which <identifiable person> can do what)
Nope, you're absolutely right, anonymous access is not working correctly here.
Only one nagging doubt here before we yell for Atlassian. When I say "anonymous", I mean "someone who has not logged in to your Confluence".
Is that the case? You've got a session in a browser where you have clicked "log out", or fired it up and never logged in, and you can still create and edit pages?
Hey Nic- Yes that's correct. To verify this thoroughly, i tested this by building in IE and viewing in chrome (also never logged into Confluence on Chrome). Hosting Confluence on a VM and i was not logged in on the host, and was still able to create. Do you know if anyone else has reported this?
I found that the one job i work for has their production version at 6.4 and it works....IF I turn on anonymous access in the global. Then in the space, turn it on for view only, SAVE then turn it off. Save and then turn it back on. To me it sounds like a bug, but it works right now, and i'm not going to touch it.
We are at 7.13.7, and what I did was to log out of confluence and I found that the spaces i could see/write to as anonymous were the ones I needed to lock down, so I logged in, and navigated to General configuration ==> Space Permissions on each of the ones i could see when i was not logged in and corrected the anonymous user. (I used Snip to pull a mini screenshot of the choices I had) and that cleared the issue for me.