We are developing a web tool which uses Jira Service Desk Cloud and Confluence Cloud to provide support. This web tool uses single sign on, so only client users can access the web tool and the link to the support sites. We are concerned with protecting security and IP while still making it easy for users to access support.
I know it is possible to lock down permissions on Jira and Confluence so that only specific users have access and/or they have to create an account before they can log tickets/read knowledge base articles. We would prefer NOT to do this in order to make it as easy as possible for users. There are also going to be thousands of users and we do not want to provide individual access for each user.
But if we have the settings for Jira/Confluence set as “anyone can view”, we are aware that our knowledge base articles and links to our Jira/Confluence sites may show up in search engine results like google. This is an IP risk for us and a potential security risk as well.
Ideally it would be great if the link to the support sites would only open if you were redirected from our web tool. Is this at all possible?
Any advice on how to set up the support sites for ease of access while also maintaining security would be much appreciated.