Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to restrict user's access to only one project?

Adrian Mussanna
Adrian Mussanna June 28, 2017

Hi,

I added two new users, but did not give them access to any projects. However, they are able to get full administrative view of my business projects... which I don't want them to see. 

Can anyone tell me how to prevent this?

Thanks

Answer
Watch
Like Be the first to like this
575 views

3 answers

0 votes
Adrian Mussanna
Adrian Mussanna June 29, 2017

Thanks, I only see this on Business Boards. If this is a common error, then I suggest that Atlassian amends this asap. 

 

Thank you both for your responses. 

View More Comments
Joe Pitt
Joe Pitt
Community Champion
June 29, 2017

There really isn't a fix. It clearly states how permissions are given and the jira-users group allows people to logon. It often comes up after they've been using JIRA for awhile and decide they don't want everyone to see a new project. The standard best practice security model is only allow access when needed, not give universal access and then restrict. However, this is how too many JIRA admins think. 

Like
Reply
0 votes
Joe Pitt
Joe Pitt
Community Champion
June 28, 2017

The most common error is adding the jira-users group to the permission scheme.  JIRA works on a Permit, not Restrict model. You GIVE permissions. You can't deny access. I suggest project roles. It allows the project admin to manage access. 

Reply
0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
June 28, 2017

Your permission scheme is giving them full admin views, you'll need to amend the permission scheme or the user accounts to remove that access.

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security