Confluence
Confluence is a collaborative work-management tool designed for sharing, storing, and
working on project planning, software development, and product management. You can use Amazon Kendra to index your Confluence spaces, pages (including nested pages), blogs, and
attachments to indexed pages and blogs.
Amazon Kendra supports both Confluence Server and Confluence
Cloud.
By default, Amazon Kendra doesn't index Confluence archives and personal
spaces. You can choose to index them when you create the data source. If you don't want Amazon Kendra to index a space, mark it private in Confluence.
You can connect Amazon Kendra to your Confluence data source using the Amazon Kendra console and the ConfluenceConfiguration API.
For troubleshooting your Amazon Kendra Confluence data source connector, see Troubleshooting data sources.
Supported features
Amazon Kendra Confluence data source connector supports the following
features:
Prerequisites
Before you can use Amazon Kendra to index your Confluence data source, make
these changes in your Confluence and AWS accounts.
In Confluence, make sure you have:
-
Granted Amazon Kendra permissions to view all content within your Confluence
instance by:
-
Making Amazon Kendra a member of confluence-administrators
group.
-
Granting site-admin privileges for all existing spaces, blogs, and pages.
-
Copied the URL of your Confluence instance.
-
For SSO (Single Sign-On) users: Activated the
Show on login page for the user name and password when you configure
Confluence Authentication methods in Confluence Data
Center.
-
For Confluence Server
-
Generated basic authentication credentials containing your Confluence
administrative account user name and password to connect to Amazon Kendra.
-
Optional:Generated a personal access token in your
Confluence account to connect to Amazon Kendra.
-
For Confluence Cloud
-
Generated an API token in your Confluence account. You use this API token as
password and your Confluence username as your user name for your authentication
credentials.
-
Optional: Generated a personal access token in your
Confluence account to connect to Amazon Kendra.
You must be a user with administrative permissions to the Confluence instance,
whether you use basic authentication or personal access token.
In your AWS account, make sure you
have:
-
Created an Amazon Kendra index and, if using the API, noted the index id.
-
Created an IAM role for your data source and, if using the API, noted the
ARN of the IAM role.
-
Stored your Confluence authentication credentials in an AWS
Secrets Manager secret and, if using the API, noted the ARN of the secret.
Be sure to regularly refresh or rotate your credentials and secret. Provide only the
necessary access level for your own security.
If you don’t have an existing IAM role or secret, you can use the console to
create a new IAM role and Secrets Manager secret when you connect your
Confluence data source to Amazon Kendra. If you are using the API, you must provide
the ARN of an existing IAM role and Secrets Manager secret, and an index
id.
Connection instructions
To connect Amazon Kendra to your Confluence data source you must provide
details of your Confluence credentials so that Amazon Kendra can access your data.
If you have not yet configured Confluence for Amazon Kendra see Prerequisites.
- Console
-
To connect Amazon Kendra to Confluence
-
Sign in to the Amazon Kendra at AWS Console.
-
From the left navigation pane, choose Indexes and then choose the index you want to connect from the list of indexes.
-
On the Getting started page, choose Add data source.
You can choose to configure or edit your User access control settings under Index settings.
-
On the Add data source page, choose Confluence connector, and then choose Add data source.
-
On the Specify data source details page, enter the following information:
-
In Name and description, for Data source name—Enter a name for your data source. You can include hyphens but not spaces.
-
(Optional) Description—Enter an optional description for your data source.
-
In Language, for Default language—A language to filter your documents for the index. Unless you specify otherwise,
the language defaults to English. Language specified in metadata overrides selected language.
-
In Tags, for Add new tag—Tags to search and filter your resources or track your AWS costs.
-
Choose Next.
-
On the Define access and security page, enter the following
information:
-
Choose between Confluence cloud and Confluence
server based on your use case.
-
If you choose Confluence cloud, enter the following
information:
-
Confluence URL—Your Confluence URL.
-
Basic authentication—Confluence host name.
-
AWS
Secrets Manager secret—Choose an existing secret or create a new
Secrets Manager secret to store your Confluence authentication
credentials. If you choose to create a new secret an AWS Secrets Manager
secret window opens.
-
Enter following information in the Create an AWS
Secrets Manager secret window:
-
Secret name—A name for your secret. The prefix
‘AmazonKendra-Confluence-’ is automatically added to your secret
name.
-
For User name and
Password—Enter your Confluence user name and your
Confluence API token as the password.
-
Choose Save authentication.
-
If you choose Confluence server, enter the following
information:
-
Confluence URL—Your Confluence user name and
password.
-
(Optional) For Web proxy enter the following
information:
-
Host name—Host name for your Confluence account.
-
Port number—Port used by the host URL transport
protocol.
-
Choose between Basic authentication and Personal
Access Token.
-
AWS
Secrets Manager secret—Choose an existing secret or create a new
Secrets Manager secret to store your Confluence authentication
credentials. If you choose to create a new secret an AWS Secrets Manager
secret window opens.
-
Enter following information in the Create an AWS
Secrets Manager secret window:
-
Secret name—A name for your secret. The prefix
‘AmazonKendra-Confluence-’ is automatically added to your secret
name.
-
For User name and
Password—Enter the authentication credential values you
generated and downloaded from your Confluence account. If using basic
authentication, use your Confluence user name and password as your authentication
credential. If using personal access token, enter the details of the
Personal Access Token you created in your Confluence
account.
-
Choose Save authentication.
-
IAM role—Choose an existing IAM role or
create a new IAM role to access your repository credentials and index content.
IAM roles used for indexes cannot be used for data sources. If you are unsure if an existing role
is used for an index or FAQ, choose Create a new role to avoid errors.
-
Choose Next.
-
On the Configure sync settings page, enter the following
information:
-
For Include personal spaces and Include archived
spaces—Choose the optional space types to include in this data
source.
-
For Additional configuration—Choose regular expression
patterns to include or exclude certain files. You can add up to 100 patterns.
-
You can also choose to Crawl attachments within chosen
spaces.
-
In Sync run schedule, for
Frequency—Choose how often Amazon Kendra will sync with
your data source.
-
Choose Next.
-
On the Set field mappings page, enter the following
information:
-
For Space, Page,
Blog—Select from the Amazon Kendra generated default
data source fields or Additional suggested field mappings to add
index fields.
-
Add field—To add custom data source fields to create an index
field name to map to and the field data type.
-
Choose Next.
-
On the Review and create page, check that
the information you have entered is correct and then select
Add data source. You can also choose to edit your information from this page.
Your data source will appear on the Data sources page once it is added successfully.
- API
-
To connect Amazon Kendra to
Confluence
You must specify the following using ConfluenceConfiguration
API:
-
Confluence version—Specify the version
of the Confluence instance you are using as CLOUD
or
SERVER
.
-
Secret Amazon Resource Name (ARN)—Provide the
Amazon Resource Name (ARN) of a Secrets Manager secret that contains the authentication
credentials you created in your Confluence account.
If you are using Confluence Server, you can use either your Confluence user name and
password, or your personal access token as credentials.
When you use your Confluence user name and password as authentication credentials, you
store the following credentials as a JSON structure in your Secrets Manager
secret:
{
"username": "user name"
,
"password": "password"
}
If you are using a personal access token to connect Confluence Server to Amazon Kendra, you store the following credentials as a JSON structure in your Secrets Manager secret:
{
"patToken": "personal access token"
}
If you are using Confluence Cloud as a Amazon Kendra data source, you use your
Confluence username and an API token generated in your Confluence account as your password.
You store the following credentials as a JSON structure in your Secrets Manager
secret:
{
"username": "user name"
,
"password": "API token generated"
}
Be sure to regularly refresh or rotate your credentials and secret.
Provide only the necessary access level for your own security.
-
IAM role—Specify RoleArn
when you call CreateDataSource
to provide an IAM role with permissions to access
your Secrets Manager secret and to call the required public
APIs for the Confluence connector and Amazon Kendra.
For more information, see IAM
roles for Confluence data sources.
You can also add the following optional features:
-
Web proxy—Whether to connect to your
Confluence URL instance via a web proxy. You can use this option for
Confluence Server.
-
Inclusion and exclusion filters—Specify whether to
include spaces, blog posts, pages, spaces, or attachments. You can also specify regular
expression patterns to include or exclude specific blog posts, pages, spaces, or
attachments.Amazon Kendra indexes blogs, pages, and regular spaces by default. If you
choose to index attachments, only attachments to the indexed pages and blogs are
indexed.
If you specify an inclusion filter, only content that
matches the inclusion filter is indexed. Any document that
doesn’t match the inclusion filter isn’t indexed. If you
specify an inclusion and exclusion filter, documents that
match the exclusion filter are not indexed, even if they
match the inclusion filter.
-
Context filtering—Choose to filter
a user’s results based on their user or
group access to documents. For more information, see User context
filtering for Confluence data sources.
-
Field mappings—Choose to map your Confluence
data source fields to your
Amazon Kendra index fields. For more information, see
Mapping data
source fields.
Learn more
To learn more about integrating Amazon Kendra with your Confluence data source,
see: