Hello Balsamiq Mockup Support team,
Today we observed that one of our page was modified anonymously even though the page was not open for anonymous view or edit. On exploring further I was able to reproduce the issue.
This is related to usage of Balsamiq mockup while session expires. Here are the steps to reproduce the issue.
• Edit a Balsamiq mockup.
• Before saving the edited mockup, in a different tab of the browser, log out from confluence. This way now the session is not valid in the browser tab where we are editing the mockup.
• Now save the mockup. Confluence will allow us to save the mockup. Then come back to the page view screen. Now confluence will ask for the user name and password as the page is restricted for authorized users only. Now confluence realizes that the session has expired.
• Login to confluence. Now you can see that the changes has been saved in the name of anonymous user.
Please note that same behavior is not observed when we edit a confluence page and session expires and we try to save the edited page. This is only observed when we edit a mockup and session expires and we save the mockup.
This is probably a bug with Balsamiq Mockup Plugin. Below are the details of Balsamiq Plugin that we are using.
Confluence Version :- 4.2.1
Balsamiq Version :- 2.1.19
License Name :- Honeywell International SARL
Plugin License Users :- 10
Please let us know your inputs.