Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Possible to show link issues with security level

Anton Brunberg
Anton Brunberg August 15, 2017

With some changes on how we handle logs from our customers, we have made so that some issues are restricted to only the specific customer and a group of employees, we call this issuetype Customer Internal.

Our problem now is that some developers outside of the group are asking for log files because they can't see the linked issue.

So, question is simple, is there a setting or plugin that let's you see that there are a linked issue that you don't have access to? It's actually a bit annoying to have them hidden.

Answer
Watch
Like Be the first to like this
688 views

1 answer

0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 15, 2017

There's no setting for it - a link that leaks information that the user would not normally able to see is absolutely the wrong thing to do in security terms.

I'm not aware of add-ons that would directly allow you to unsecure your links, but if you've got one of the scripting plugins, or a developer to hand, you could write a derived field that goes off and reads the infromation (pretending to be a privileged user) and exposes it on the issue. 

View More Comments
Anton Brunberg
Anton Brunberg August 15, 2017

We don't want them to be able to see the information in the issue, only that the issue exists to begin with.

We do use scriptrunner, I can explore that for showing some information then.

Thanks!

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 15, 2017

The Scripted field option does mean that you have complete control over what you expose. 

In some cases, it is a security problem for a user to even know there's a link to issue X, but that's not common - the usual problem is that links expose summary and other information.

But with SR, you've complete control over what is ok for you to expose.

Like
CC
CC February 16, 2021

Anton, how did you solve this, please?

Like
Anton Brunberg
Anton Brunberg
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
February 16, 2021

Hi Caio!

We actually went with an Automation Rule that read the logs and put them into a specific field in the open issue.
So we didn't solve the actual issue, unfortunately.

Like
CC
CC July 9, 2024

Hello Anton. Thank you for your reply. Do you if there is a simpler solution in the meantime?

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.