Skip to main content

Integrate a new Confluence Cloud source

info

For now, only real-time scanning is supported to detect secrets in pages, blogs and comments. All detectors are supported, with the exception of these 2 generic detectors, in order to limit the risk of false positives:

Setting up and configuring this integration is limited to users with an Owner or Manager access level. Confluence Cloud site installation is only open to workspaces under the Business or Enterprise plan, but uninstallation is open to all. Alternatively, you can install and test secret detection in Confluence Cloud with a 30-day trial. Any secret incidents created during this period will remain accessible in your incident dashboard after the trial period.

GitGuardian integrates natively with Confluence Cloud via an OAuth2 app and a Connect app that you can install on your Confluence Cloud sites. Note that the GitGuardian OAuth2 app only has read access to your spaces.

Setup your Confluence Cloud integration

You can install GitGuardian on multiple Confluence Cloud sites to monitor your spaces.

  1. Make sure you're logged in the Confluence Cloud site you want to install
  2. In the GitGuardian platform, navigate to the Integrations page
  3. Click on the Install button on the Confluence Cloud card in the Documentation section Confluence Cloud card
  4. Click on the Install button of the Confluence Cloud integration page
  5. Click on the Connect with Confluence Cloud in the installation modal Confluence Cloud install - Step 1
  6. Make sure you are connected to the right Confluence Cloud site
  7. Click on the Accept button to accept the permissions requested by GitGuardian Confluence Cloud permissions
  8. Click on the Open Confluence Cloud settings in the installation modal Confluence Cloud install - Step 2
  9. Click on Settings in the Manage apps page of your Confluence Cloud site
  10. Check the Enable development mode option and click Apply in order to allows the installation of our Connect app Confluence Cloud Development Mode
  11. Click on Upload app in the Manage apps page of your Confluence Cloud site
  12. Paste our app descriptor URL and click Upload to upload and install our app: https://dashboard.gitguardian.com/api/v1/confluence-cloud/connect-app/app-descriptor/Confluence Cloud Upload app

That's it! Our OAuth2 app is now automatically invited on all your spaces and our Connect app connected to your Confluence Cloud site. It will now start monitoring all pages, blogs and comments of your spaces for secrets.

Uninstall your Confluence Cloud site

To uninstall a Confluence Cloud site:

  1. In the GitGuardian platform, navigate to the Integrations page
  2. Click on the Confluence Cloud card in the Documentation section
  3. Click on the bin icon next to the Confluence Cloud site to be uninstalled
  4. Confirm by clicking on the Yes, uninstall the connect app button in the confirmation modal Confluence Cloud uninstall
  5. Uninstall the Connect App by clicking on Uninstall
  6. Confirm by clicking on the Uninstall app button in the confirmation modal Confluence Cloud uninstall

That's it! Your Confluence Cloud site is now uninstalled.

Remove the GitGuardian OAuth2 app from your Confluence Cloud site

Uninstalling a Confluence Cloud site from the GitGuardian platform does not remove the GitGuardian OAuth2 app from your Confluence Cloud site. This is not a mandatory step, but you can remove it manually after uninstalling your Confluence Cloud site from the GitGuardian platform.

To remove the GitGuardian OAuth2 app from your Confluence Cloud site:

  1. Go to the Connected apps page of your Confluence Cloud site
  2. Click on the Remove access button next to the GitGuardian Confluence app
  3. Confirm by clicking on the Remove button in the confirmation modal Confluence Cloud - Remove app

That's it! The GitGuardian OAuth2 app is now removed from your Confluence Cloud site.

Privacy

Country-specific laws and regulations may require you to inform your Confluence Cloud users that your spaces are being scanned for secrets. Here is a suggestion for a message you may want to use:

As part of our internal information security process, the company scans the Confluence Cloud spaces for potential secrets leaks using GitGuardian. All data collected will be processed for the purpose of detecting potential leaks. To find out more about how we manage your personal data and to exercise your rights, please refer to our employee/partner privacy notice. Please note that only spaces relating to the company’s activity and business may be monitored and that users shall refrain from sharing personal or sensitive data not relevant to the space’s purpose.

How can I help you ?