Emails are shown in people directory although turned off in security configration.

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Summary

You would like to restrict user email visibility to only for site administrators so it is not publicly visible. To configure we perform the following steps.

To configure User Email Visibility:

  1. Choose the cog icon

    (Auto-migrated image: description temporarily unavailable)

    , then choose General Configuration

  2. Choose 'Security Configuration'.

  3. Choose 'Edit'. The fields on the 'Security Configuration' screen will be editable.

  4. Select one of the options from the 'User email visibility' dropdown: 'public', 'masked', or 'only visible to site administrators'.

  5. Choose 'Save'.

Even after doing the above steps the other users (non-admin) can still see the emails which is a security concern.

Environment

7.3.5

Diagnosis

No related errors could be found in the Confluence logs.

Cause

This issue is caused by the "Linchpin User Profiles" plugin.

Solution

The concerned plugin can be disabled and the issue will not occur.

Updated on April 8, 2025
Platform
Data Center only
Product
Confluence Data Center
On this pageSummaryDiagnosisCauseSolution

Still need help?

The Atlassian Community is here for you.
Ask the Community