It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Single Sign On AzureAD without Browser interaction

Hey,

could you assist me with the following Problem:

Setup: Confluence Cloud connected to Azure AD

I would like to programatically get a Token from the Azure AD and use the contents of that token to login a user into my Confluence instance.

I have been able to aquire the security token but now I am stuck. Is there a confluence cloud url (e.g. the callback url) that I can redirect the user to automatically log him/her in? And if so which data/parameters would I need to pass.

The scenario is that I have a website were users can log in and there is a documentation for that website in the conflluence cloud (no public content) that the users should get readonly access to. So when a website user requests the documentation I generate the security token with predefined credentials and the user is redirected with that token onto the confluence cloud.

Thank you for enlightening me if such scenario is at all possible.

1 answer

0 votes
claud Atlassian Team Oct 04, 2019

Hello @dev 

Welcome to the Atlassian Community!

Looking at the context of your scenario, it appears that you want to somehow restrict access to Confluence only to users that have an account on your website but do not have an account in Confluence. Also, opening your Confluence site to the public doesn't seem to be an option.

The short answer here is that it's not possible - you can either configure public (anonymous) access to your Confluence site or have Confluence user accounts for all your site's users. This is independent of the login method (SSO or email+password).

There might an alternative, but it's rather complicated: You can fetch the content from Confluence (via REST API)and then present it on your site, effectively restricting it only to users of your site. However, it involves some dev work and a replication of the content in Confluence, so I'd suggest against it.

However, zooming out a bit, could it be that your website is a service desk, where users create tickets? If so, you might consider adding Jira Service Desk and pairing it up with Confluence. This way you can set up a knowledge base in Confluence where your service desk customers will have read-only access without being counted as Confluence users (or Jira Service Desk agents).

Hello claud,

thank you for your response. That is unfortunate to hear...

Actually our website is no service desk, it is an application website which we had wanted to write usage documentation in a confluence instance. The documentation should nevertheless not be public as it might give details away to our competitors which we are unwilling to share. The users of the documentation are supposed to get readonly access.

We will probably use confluence to compose the documentation and use a plugin to make a readonly copy to use in our application.

Thank you for your time!

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Posted in Confluence

What project did you transition or start on Confluence with the shift to remote work?

It’s been great to hear from fellow users over the last few weeks about the best tips and fun moments you’ve had working on Confluence since the transition to working remote. I’d love to keep the c...

32 views 2 4
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you