Versions Compared

Old Version 2

changes.mady.by.user Nirosan

Saved on

compared with

New Version 3

changes.mady.by.user Nirosan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Both the Hide If and Show If macros for Visibility feature the Label parameter. The following is a complete matrix of behaviors when using the Label parameter.

This may help users who prefer using labels with a dash "-" prefix (e.g. "-review") and how the Label parameter behaves when it encounters such labels.

...

Action

...

Secret User

...

Secret Owner

...

Space Permissions

...

Notes

...

Create secret

...

N/A

...

N/A

...

  • Add checked under Pages and whiteboards.

  • Add/Delete checked under Restrictions or Admin checked under Space.

...

 N/A

...

Decrypt secret

...

...

...

This page displays the action a user can perform with secrets and the related permission required by the user.

Permission required for secret owner action

A secret owner is a user who manages the secret. The table below shows the actions that can be performed by a secret owner:

Action

User Type

Space Permission

Secret Owner

Add Pages

Add/Delete Restrictions

Space Admin

View All

Delete Pages

Notes

Decrypt secret

(tick)

(error)

(error)

(error)

(tick)

(error)

 N/A

Edit secret

  • Add checked under Pages and whiteboards.

    • (tick)

    (tick)

    *(tick)

    *(error)

    (tick)

    (error)

    • *Add/Delete

    checked under Restrictions or Admin checked under Space

    • Restrictions and Space Admin permissions are interchangeable, you can provide either or.

    • Editing a secret means editing the page, followed by editing the secret macro.

    • The following values of the Secret

    are allowed to

    • can be updated:

      • Title

      • Description

      • Secret

      • Users

      • User Groups

      • User Owners

      • Group Owners

    Change secret owner

  • Add checked under Pages and whiteboards.

    • (tick)

    (tick)

    *(tick)

    *(error)

    (tick)

    (error)

    • *Add/Delete

    checked under Restrictions or Admin checked under Space

    • Restrictions and Space Admin permission are interchangeable, you can provide either or.

    • Changing the secret owner requires the ability to edit the secret, similar access is required.

    Delete secret

    ⚠️ Deleting secrets require Delete under Pages and whiteboards checked. (The check for this

    (tick)

    (error)

    (error)

    (error)

    (tick)

    (tick)

    • ⚠️ The check for Delete Pages permission happens in the background, if the permission check fails, it will not display any error messages

    )

    • ⚠️ Space admins without secret ownership could also delete secrets, but I don’t think we are catering for this use-case anymore, especially with the introduction of Read-Restricted secrets.

    Restore or purge deleted Secrets

    N/A

    N/A

    • Admin checked under Space.

     N/A

    Bulk upgrade secret

    • Add checked under Pages and whiteboards.

    • Add/Delete checked under Restrictions or Admin checked under Space.

     N/A

    View secret list

    N/A

    N/A

    • Anyone with View checked under All.

     N/A

    Secret administration

    N/A

    N/A

    • Admin checked under Space.

    This includes

    • .

    Bulk upgrade secret

    (tick)

    (tick)

    *(tick)

    *(error)

    (tick)

    (error)

    • *Add/Delete Restrictions and Space Admin permission are interchangeable, you can provide either or.

    Permission required for secret user action

    A secret user is a user who can access a secret on a page. The table below shows the actions that can be performed by a secret user:

    Action

    User Type

    Space Permission

    Secret User

    Add Pages

    Add/Delete Restrictions

    Space Admin

    View All

    Delete Pages

    Notes

    Decrypt secret

    (tick)

    (error)

    (error)

    (error)

    (tick)

    (error)

     N/A

    Permission required for non-secret owners and non-secret users action

    The table below shows the actions that can be performed by non-secret users and non-secret owners:

    Action

    Space Permission

    Admin Permission

    Add Pages

    Add/Delete Restrictions

    Space Admin

    View All

    Site Admin/Org Admin

    Notes

    Create secret

    (tick)

    *(tick)

    *(error)

    (tick)

    (error)

    • *Add/Delete Restrictions and Space Admin permissions are interchangeable, you can provide either or.

    • You are known as a secret owner after creating and owning the secret.

    Restore or purge deleted secrets

    (error)

    (error)

    (tick)

    (tick)

    (error)

    N/A

    View secret list

    (error)

    (error)

    (error)

    (tick)

    (error)

    N/A

    Secret administration

    (error)

    (error)

    (tick)

    (tick)

    (error)

    • This includes access to the following tabs:

      • Audit Logs

      • Insights

      • Server Migration

      • Owner Restrictions

    Migrate secrets

    N/A

    N/A

    (error)

    (error)

    (tick)

    (tick)

    (tick)

    • site-admins or org-admins group is required to perform the CCMA migration.

    • Space Admin

    checked under Space

    • permission is required to perform the “Secret Transformation” action on the Server Migration tab.

     N/A