Feedback Request Confluence Public Links

Basic must-have controls: the ability to turn public link creation off globally, as well as per space. Especially for customers utilizing a HIPAA-compliant configuration.

Totally irrelevant to us.

Meanwhile, Atlassian has failed to restore essential functionality that is relevant to us.

Thank you for your input! We're actively noting your feedback, so do keep them coming! 

First off I would like to +1 to what @Jared Pittman noted about including a way to disable the feature globally, and on a per space case.  We would also need a visual aid on the page to notify users that this page is publicly available, especially in cases where the space is normally private. 

I would go a step further and include the option for a pop-up on editing to page that ensures users understand that this page is currently shared publicly.  If businesses don't feel confident that users will know which pages are public, then they are likely to default to the feature above and just disable it.

Additionally, it would be good if we could control permissions within the space using the existing permissions grip to enable or disable the ability to create public links of a group by group basis.

Regarding existing links, it would be very useful to be able to list them centrally, so that Administrators or managers can review them from as needed, and centrally remove them as needed, rather than needing to hunt through the entire wiki to find old public links.

As a bonus feature it could also be useful to be able to temporarily make a public link like SharePoint does, and have it end after a set period of time, which would essentially automate the above process of cleaning up old links.

Thank you for sharing your thoughts Jeff! 

I have yet to work with the Public Links feature but find it intriguing and will be seeing what it does and how far I can extend it's use.

An enhancement that would really be exciting is a Private (Share) Link.   Very prevalent in collaboration system sharing.   Maybe that is doable by taking the Public Link and presenting the content in an access controled web page?

Eric M.

Syracuse University

I don't have direct access to user insights or specific organizational needs. However, I can provide some general considerations and suggestions regarding the use of the Public Links feature in Confluence and the security controls that might be important for organizations.

Usage in Organizations:
1. Public links can be valuable in organizations when there is a need to share view-only versions of Confluence pages with external stakeholders, such as clients, vendors, or contractors.
2. It allows for efficient collaboration without the need for users to have a Confluence account or occupy additional seats.
Must-Have Security Controls:
To ensure trust and security while using the Public Links feature, consider the following controls:
1. Access Control: Organizations may require granular control over who can generate and access public links. This control can include options to limit link generation to specific user groups or roles and restrict access based on predefined permissions.

2. Expiration and Revocation: The ability to set an expiration date for public links can be crucial. Additionally, providing the option to revoke public links before the expiration date, either manually or automatically, can enhance security.

3. Password Protection: Adding an optional password requirement for accessing shared pages through public links can provide an extra layer of security. This way, only individuals with the password can view the content.

It's important to conduct user research, collect feedback from organizations using the Public Links feature, and understand their specific security requirements and concerns. This will allow you to prioritize enhancements and tailor the feature to better meet the needs of different organizations.

Ronhit Neema
MSCS at Northeastern University, Boston