Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

A generic user can see a project he doesn't have permission for

shachar
shachar February 3, 2019

Hi guys,

 

I've been messing around with Jira for a while now, but don't seem to find a solution for this strange behaviour:

I have created a project where only certain people can access it and perform various actions, but it's still visible on the project selection screen and even let's a generic user who doesn't have any special permissions to go inside the project (he can't see any issues, so that's a good thing).

In the meantime, I've created another project, but that one the same user cannot see on the list. That's the exact effect I wish to apply for the first project but can't seem to point to why it doesn't happen: both projects have pretty much the same permissions.

 

I'm posting a screenshot of the permission scheme:

 

 

Screen Shot 2019-02-03 at 23.00.14.pngScreen Shot 2019-02-03 at 23.00.41.pngScreen Shot 2019-02-03 at 23.01.15.png

this user is not a member of any of the groups shown above. Can you please help? :(

Answer
Watch
Like Be the first to like this
377 views

1 answer

1 accepted

0 votes
Answer accepted
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 3, 2019

Hello,

I guess, the user can see the project because you have a user custom field attached to the Browse Issues permission. Try to remove it and I guess the user will not be able to see the project.

View More Comments
shachar
shachar February 4, 2019

If I remove the "user custom field value" from the "browse project permission" he's not able to view it :) But that's not optimal, please see my comment below!

Like
shachar
shachar February 4, 2019

The custom field (Direct Manager) is essential to one of the sub-tasks in the project.

the direct manager field is automatically being populated with the value of another user-picker field (so the direct manager's user varies upon the selection), and the direct manager gets an e-mail notification that he's being assigned with the issue.

If I decline the "user custom field value" for "Browse project" permission scheme, he won't get any e-mails (this permission is necessary).

I don't mind him (the chosen direct manager AKA "user custom field value") to view the project, unless it's about any other user who's not involved in the project.

Any ideas?

 

Thanks!

Like
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 4, 2019

I gave you the reason, why Jira works like this. If you need this field, then you can not do anything. Just kindly make sure that I am right. You can remove the field and check. Then add the field back.

Like
shachar
shachar February 4, 2019

Sounds odd but ok, thank you :) 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security