Macro Security for Trusted Spaces - 4.x

Description

For apps that have this option (see Supporting Apps table shown on the right), administrators can establish some spaces as being secure places for restricted macro capabilities. This allows administrators to use space permissions, rather than "edit" page restrictions, to control who can create or edit content that uses a restricted macro.

Use Case

An administrator has a space that already has space-level permissions governing who can create content in the space, limiting it to certain trusted users. The administrator would like to allow restricted macros to be used on pages in that space without needing to use "edit" page restrictions.

Configuration

The following Macro Security configuration allows content within a Confluence Space to be authorized without requiring a page restriction: space:SPACEKEY.

This can be used instead of or in addition to specifying trusted users and/or groups in the list of authorized entries. Also, it can be used on use restrictions as well as the parameter restrictions. (Refer to the Key Concepts page for more information about 'Use Restrictions' and 'Parameter Restrictions'.)

Control access through space permissions

When configuring space-level permissions in spaces for which Trusted Spaces macro security has been configured, Confluence Administrators and Space Administrators must ensure that:

  • Only users who are trusted to use that macro capability are allowed to edit content.
  • Non-trusted users are not allowed to edit content.

If this criteria cannot be met or the space permissions need to be less strict, then do not use space-based macro security!

Supported Apps

Using Macro Security for Trusted Spaces requires specific enablement.

(tick) = available in a released version