Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Browse only permissions for Jira

Reshikha
Reshikha August 6, 2018

I am using Service desk which my customers have access to. I am trying to provide a customer Browse only access to the project.

I have create a new role for browse only, created a new permission scheme etc

The problem is that when I log in as the user I have browser only permissions to - I can either only see the service desk portal or see ALL my jira projects!

I have read ALL the documentation, tried everything suggested and I end up with the above always.

Please can you assist with a straight forward use case on how to provide a user/customer specific Browse only permissions to a project.

Answer
Watch
Like Be the first to like this
1251 views

3 answers

0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 7, 2018

I think you are getting roles and groups confused.

  • A group is a collection of users
  • A role is a container for users and groups that crosses all projects.  For example, I can set up three projects, A, B and C, and one role like "developer".  I can then put different people into the "developer" role in A, B and C.

>However, I have not assigned that role to a specific project which I would like to do. 

Roles appear in all projects as soon as they are defined.  There is no "add role" to a project, because you don't need it.  I think you mean "group" here.

> I am only able to assign this role in Product access not a specific project. 

Again, this sounds like you mean a group, and the rest of your question and comment do not make a lot of sense unless you mean group, not role.

To do what I think you want to do, there's a simple thing to do, and a more complex task.

First task: let the users in:

  • Create a role of "read only"
  • Adjust the permission scheme so that it includes "Browse project: Role (read only)"
  • In the one project you want them to see, add either individual people or a group containing them into the role of "read only"
  • Add the same users to "application access" in "manage applications"
  • (Bear in mind that this means your customers will now consume licence seats, as they are users now)

Second task: undo the horrible default access Atlassian have lumbered you with

  • In the permission scheme for every project, look at the "browse project" permission
  • Remove anything that says "application access" or "any logged in user", replacing it with a role of "users"
  • Make sure the right people are in the role of users for each project
View More Comments
Reshikha
Reshikha August 7, 2018

Thanks Nic. I have done the above but it still didn't work.  

The second part of your solution helped fix the issue. The problem was that the default Software permission scheme added the Service agent as well. 

I've had to create the customer as a service agent in this case.

Like
Reply
0 votes
Reshikha
Reshikha August 7, 2018

Hi I have done the above correct. However, I have not assigned that role to a specific project which I would like to do. 

Right now I am only able to assign this role in Product access not a specific project.  As soon as I create a user, it assigns it either a service desk role or Jira Software role. So I created a new role called Browse only, removed Jira software and service desk roles. 

The problem is the moment I add this role to Jira software/Service desk role - it allows access to everything.

I have no idea how to go about assigning a user to a specific project.

Reply
0 votes
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 6, 2018

Hello,

Do I understand correctly, that you created a role, then granted the browse issues permission to this role, included your user in this role only in one of the projects and now your user can see all projects? Which other groups, roles or users are granted the Browse issues permission in this project?

View More Comments
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 7, 2018

Have a look at the coq items -> Applications -> Application Access. You will see default groups, which grant Service Desk or Software features to users. I guess these groups are included in the project permission schemes for each project. Make another group, add it to the Application access. Then make a new permission scheme. Remove old groups from there and add the new one. Attach this permission scheme to the required project and add your user only to the new added group. 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security