Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,299,589
Community Members
 
Community Events
165
Community Groups

Storing Passwords in Confluence

Hi,

We are hoping to store passwords in Confluence for certain resources such as server accounts and passwords. While storing passwords in plain text is not advisable we have to maintain a central record of them somewhere that a distributed team is able to access. We are currently running on the Cloud version of Confluence.

Is there any feature or function that would allow us to encrypt or hide the passwords directly in confluence? We cam always encrypt them in a different tool and place the encrypted text in confluence but this is cumbsersome.
Having the ability to do this (especially user based security) in Confluence would be great or alternatively some form of browser plugin to encrypt/decrypt the text.

Does anyone know how this could be achieved?

3 answers

1 accepted

2 votes
Answer accepted

There are multiple add-ons that can encrypt content and store that in secured format even in the database. These are only available for the Server edition:

  1. https://marketplace.atlassian.com/plugins/net.customware.confluence.plugin.vault/server/overview (this one comes from a well established vendor and I think that is key)
  2. https://marketplace.atlassian.com/plugins/com.prcpo.confluence.plugins.secure-content-block/server/overview
  3. https://marketplace.atlassian.com/plugins/dk.translucent.atlassian.confluence.crypto-plugin/server/overview

For the cloud, I found only one. You should check if rely on this service, because you are storing/handling secure information in a 3rd party service:

  1. https://marketplace.atlassian.com/plugins/com.g2.vsecure/cloud/overview

(Note: this last one is not supported, which isn't a good sign.)

Hi,

this article is a bit older, but may still be relevant for some people.
There is an add on for Confluence Cloud (Secure Content) that does exactly what the questioner wants. You can store passwords directly in Confluence and show or hide them. The data is also encrypted.
Here is the link to the add on:

https://marketplace.atlassian.com/apps/1226391/secure-content-for-confluence-cloud?hosting=cloud&tab=overview

Regards,
Michael

I'm sure there are more answers, but 2 come to mind:

  1. you can restrict access to the page to only those people who need access
  2. attach an Excel or Word file and password protect that file

That said, I'm not sure I'm in favor of using Confluence as my source for passwords

"I'm not sure I'm in favor of using Confluence as my source for passwords"

Atlassian, are you listening?..

Yet another reason to use SecureContent.

Atlassian (and also the publisher of the AddOn) do not have access to the passwords there.
Reason:
- The encrypted data is attached directly to the client's page to which the publisher has no access.
- To decrypt the data you need the algorithm on the publisher's server (Atlassian has no access)
- Even if the publisher or Atlassian had the user's encrypted data from SecureContent, a valid user session would be required to decrypt the data.

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Confluence

An update on Confluence Cloud customer feedback – June 2022

Hi everyone, We’re always looking at how to improve Confluence and customer feedback plays an important role in making sure we're investing in the areas that will bring the most value to the most c...

288 views 2 6
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you