Confluence Security
Confluence Space Permissions
As a Confluence Space Administrator, you have the ability to control the permissions of your space. You may add/remove groups and individual users to your space to restrict access as required.
By default, the creator of the space has full permissions for the space. The default Confluence group assigned to each space upon creation is the Administrators group.
(Anonymous users have no default permissions to the space.) Administrators are a select group of staff that administer the overall system. Users are anyone with a license to use Confluence. Developers are a subset of Users.
Currently the user and developer groups include members from many organizations. As you see in the screenshot below, members of these groups have permissions to add and edit content. This means that a large community of people will have access to edit your space unless you choose to either remove this group or restrict the default access.
NEW Default Space Permissions as of 11/21/2019
NOTE: The default permissions when creating new Confluence spaces will change on 11/21/2019. This will not impact existing spaces. The new defaults will be restrictive and will not automatically grant permissions to the users and developers groups. You will need to grant permissions to specific users. See "Set Permissions" for instructions on how to change security.
Groups:
The space creator and/or space administrators can assign permissions to groups.
NOTE: Creation of groups, and group membership, is managed by the system administrators.
In the example below, all members of the Confluence users, developers and administrators group have view access to the space and some level of edit access. Additionally, the soe-users group can only view the space.
If soe-users should have edit capability and restricted access to the space, the space administrator should remove developers and users and grant edit permissions to the soe-users group.
Public Access:
The Anonymous Access section provides access to public spaces for anyone without an account. The default permission for Anonymous is no access. Space administrators need to specify the type of public access.
Note: Individual pages in Confluence can be restricted separately from the space permissions if you want a combination of public access and restricted access on a particular space.
Below illustrates that anyone can view the space; no login is required and no other functions are allowed.
Individual User Access:
The Individual Users section below illustrates that users can perform all functions other than “Delete Own” which gives permission to delete any pages, blogs, attachments and comments one created in their space (regardless of whether other users have subsequently edited the content).