Both the Hide If and Show If macros for Visibility feature the Label parameter. The following is a complete matrix of behaviors when using the Label parameter.
This may help users who prefer using labels with a dash "-" prefix (e.g. "-review") and how the Label parameter behaves when it encounters such labels.
...
Action
...
Secret User
...
Secret Owner
...
Space Permissions
...
Notes
...
...
N/A
...
N/A
...
Add
checked under Pages and whiteboards.Add/Delete
checked under Restrictions orAdmin
checked under Space.
...
N/A
...
...
✅
...
✅
...
This page displays the action a user can perform with secrets and the related permission required by the user.
Permission required for secret owner action
A secret owner is a user who manages the secret. The table below shows the actions that can be performed by a secret owner:
Action | User Type | Space Permission | |||||
---|---|---|---|---|---|---|---|
Secret Owner | Add Pages | Add/Delete Restrictions | Space Admin | View All | Delete Pages | Notes | |
Decrypt secret |
|
| N/A | ||||
Edit secret |
❌
✅
Add
checked under Pages and whiteboards.
| * | * |
|
|
Admin
checked under Space
|
|
Change secret owner |
❌
✅
Add
checked under Pages and whiteboards.
| * | * |
|
|
Admin
checked under Space
|
Delete secret |
❌
✅
Delete
under Pages and whiteboards checked. (The check for this
|
|
|
⚠️ Space admins without secret ownership could also delete secrets, but I don’t think we are catering for this use-case anymore, especially with the introduction of Read-Restricted secrets.
N/A
N/A
Admin
checked under Space.
N/A
❌
✅
Add
checked under Pages and whiteboards.Add/Delete
checked under Restrictions orAdmin
checked under Space.
N/A
N/A
N/A
Anyone with
View
checked under All.
N/A
N/A
N/A
Admin
checked under Space.
| |||||||
Bulk upgrade secret |
| * | * |
|
|
Permission required for secret user action
A secret user is a user who can access a secret on a page. The table below shows the actions that can be performed by a secret user:
Action | User Type | Space Permission | |||||
---|---|---|---|---|---|---|---|
Secret User | Add Pages | Add/Delete Restrictions | Space Admin | View All | Delete Pages | Notes | |
Decrypt secret |
|
| N/A |
Permission required for non-secret owners and non-secret users action
The table below shows the actions that can be performed by non-secret users and non-secret owners:
Action | Space Permission | Admin Permission | ||||
---|---|---|---|---|---|---|
Add Pages | Add/Delete Restrictions | Space Admin | View All | Site Admin/Org Admin | Notes | |
Create secret | * | * |
| |||
Restore or purge deleted secrets | N/A | |||||
View secret list | N/A | |||||
Secret administration |
| |||||
Migrate secrets |
N/A
|
|
|