how can I give view access to somebody only on a specific leaf page in my space?

This question is in reference to Atlassian Documentation: Page Restrictions

I want a user to see only one page in my space. That page is part of a  hierarchy of pages. Now: how can I restrict access higher in the parent hierarchy and still give access (because inherited access rights are always blocking access, even when I give specific access on the leaf page). 

 

I believe this system is rather problematic: it should be possible to restrict access higher in the tree, and give specific access lower.

4 answers

1 accepted

1 vote
Thomas Schlegel Community Champion Mar 20, 2017

Hi Ronny, 

simple answer: you can't. No way. This was discussed a lot of time here in answers.

The only thing that might work is to put this page directly under the home page of the space and restrict all the other pages that are directly under the home page to the rest of your people.

But this is a hell of administration and very insecure. You have to restrict every single new top page of your space and never forget that...

So, I won't do that, if I could avoid it.

You are right Thomas. Not only it is bad, but stupid as well, because I would create more accounts for my partners, which can be monetized by atlassian.  Thank you your reply,. mu

I'm on board that it's a flaw in the design...

Here is my work-around, it's a pain sometimes but it works.  

I created a Generalized Space to house information for specific viewers and assign permissions for specific page views.  

I also judge this way of "permission management" as insufficient. It equals the general rule for each space: "everything is allowed except for what is forbidden", i.e. a classical black list approach. For security reasons, we would prefer "everything is forbidden except for what is allowed", i.e. classical white list approach.

Is there a feature request that I can vote on to provide this feature?

I would propose to be able to switch per space between the black and white list approach. It would be ok, if a leaf page is marked as "allowed" for a user, that all the parent and grandparent etc. of this leaf in this space are automatically also "allowed", but no sisters, brothers, cousins, etc. ... in particular new sites shouldn't be accessible in whatever way by this user.

Suggest an answer

Log in or Sign up to answer
Atlassian Community Anniversary

Happy Anniversary, Atlassian Community!

This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.

Read more
Community showcase
Kesha Thillainayagam
Posted Apr 13, 2018 in Confluence

We want to hear how your non-technical teams are using Confluence!

Hi Community! Kesha (kay-sha) from the Confluence marketing team here! Can you share stories with us on how your non-technical (think Marketing, Sales, HR, legal, etc.) teams are using Confluen...

2,922 views 27 12
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you