Permissions
Space admins can control the permissions of groups and individuals who can view and edit the space.
- Anonymous access means also search engines like google
- confluence-users is all logged in users (Haka and non-haka who have accounts)
- @csc.fi and similar domain groups include all users of said domain by email.
https://confluence.atlassian.com/doc/space-permissions-overview-139521.html
Common access should be controlled from Space Tools -> Permissions
Restrictions
Restrictions should not be used if not absolutely necessary. And if they are used, preferred way is to restrict a group and add macro "User list" (Reporting category) on the root of the restricted tree to list the people who have been allowed access to the restricted section.
The lock icon near the page title is misleading in the sense that it does not show the permissions that control the actual access to the space.
View restriction is in most cases enough. View is inherited to sub-pages and contains both view+edit permissions.
Edit restriction does not inherit to subpages and restricts editing from anyone but the listed group/user.
Restrictions are an additional limitation to page access. The group should have normal space permissions access to be able to enter.
Misleading button
The page title in confluence has a misleading button that typically says "Unrestricted" in the tooltip. This means restrictions, not the actual state of the space permissions. As stated above, permissions determine the access rights, restrictions only constrain the existing rights further.