Hi everyone,
I’m trying to audit all the projects in our Jira instance to identify which ones are visible to a broad audience — specifically:
- Projects where the Browse Projects permission is granted to the
jira-users group, or - Projects where it’s granted to any logged-in user (as shown in the UI under “Application access”).
I’ve tried using ScriptRunner to loop through all projects and inspect their permission schemes. I’m checking for type: group with parameter: jira-users, and also for type: loggedin or applicationRole. But the script keeps returning an empty list — even though I know for sure that some projects (like PRJA) are accessible to any logged-in user.
Has anyone successfully scripted this kind of audit? Or is there a better way to detect this kind of access?
Thanks in advance!
