Support for Secure Administrator Sessions, called 'WebSudo', was added in Confluence 3.3 (see documentation) and JIRA 4.3 (see documentation). When an administrator who is logged into Confluence or JIRA attempts to access an administration function, they are prompted to log in again.
All the Atlassian applications will support WebSudo sessions at some point. As of SAL 2.2 and REST 2.2 it is possible to enforce WebSudo from within a plugin if the host application supports it.
Rate this page: