Security and Encryption for Confluence | Under the Dome

Kathryn Moye
over 1 year agoDecember 17, 2015
What about attachments?  Can we put an attachment into the rich text editor?
over 1 year agoDecember 17, 2015
@Kathryn, not at the moment. This feature is under development by the ServiceRocket Tools Engineering team. Thank you for watching!
Morten Vinther
over 1 year agoMarch 1, 2016
I have just installed it at our system, but find it slow. The decrypt.json uses more than 20 secs – something you have seen before?
We use  Confluence version 5.9.1.
over 1 year agoMarch 2, 2016
@Morten that's interesting, we've never seen it before. Let our support peeps know ( and we'll get on it. Please specify web browser type/version and perhaps check for interference from browser extensions.
Morten Vinther
over 1 year agoApril 5, 2016
Thanks to Samuel Gatica and your development team - version 2.7.1  solved the challenge. Decrypt.json now uses between 80 and 100 ms!
James Roberts
over 1 year agoMarch 17, 2016
Does this work with LDAP users or only local Confluence users?
Azwandi [ServiceRocket]
over 1 year agoMarch 18, 2016
@James Yes, it works with LDAP users too.
James Roberts
over 1 year agoApril 6, 2016
@Azwandi, it appears that this is NOT working with LDAP authenticated users. Each time a user attempts to decrypt something it continues to say that their password is wrong and to input their Confluence password. For systems where authentication is handled by an LDAP that will not work.
Azwandi [ServiceRocket]
over 1 year agoApril 6, 2016
@James, would you mind to reach out our support team at Please let us know your LDAP directory settings, and we'll try to reproduce the problem.
Rob Calvert
over 1 year agoMarch 30, 2016
Is it possible for a confluence admin, or someone with access to say 30 encrypted passwords on a page, reveal them all for PDF creation? Use case = needing to export a hard copy of passwords for various reasons.
Azwandi [ServiceRocket]
over 1 year agoMarch 31, 2016
It's not possible at the moment, but it's an interesting use case.
Areg Vrtanesyan
about 1 year agoMay 26, 2016
In confluence group "confluence-adminsitators" is hardcoded root and can particularly view any page even it is restricted...

This will mean that Admins will be able to navigate to that page, edit it and reveal that information even he is not allowed to see that.
Azwandi [ServiceRocket]
about 1 year agoMay 31, 2016
Hello Areg, by-design of Confluence, the members of confluence-administrators group (or users with Confluence Administrator or System Administrator permission) would be able to login as any user. Are you looking for a way to overcome this? I'd love to hear it - contact me at
Your comment