Configure permissions for team-managed projects

5 min
Intermediate

By the end of this lesson, you'll be able to:

  • Define team-managed project permissions
  • Control access to a project
  • Configure work item restrictions for software and business projects

Grant permissions to users in team-managed projects

In team-managed projects, roles control how users can interact with the project. Project admins can grant custom roles different permissions to accommodate their project needs.
👉 For example: If you want external consultants to have more permissions than the default Viewer role, you can create a new “Consultant” role and grant it additional permissions, like work item or request editing.

You can’t modify the permissions granted to default roles (Administrator, Member, and Viewer). If you want to grant users a different set of permissions, you can create a new role.

To grant permissions in a team-managed project:
  1. Select the More actions (···) menu next to the team-managed project in the sidebar, and select Project settings.
  2. In the sidebar, navigate to access settings.
    1. In a service project, click People and access.
    2. In a software or business project, click Access.
  3. Click Manage roles.
  4. Select a custom role. Note: If the only roles are default roles, create a role.
  5. Select or deselect permissions as needed. Each permission has a description you can use to determine what each role needs.
  6. Click Update.

Configure internal project access

Permissions are different from internal project access. Internal project access determines how users outside of your project can interact with your project.
👇 Click the tabs below to explore different access levels.
If you choose the Private access level, only Jira admins and users with roles in your project can search for, view, and comment on requests or work items.
In software and business projects, those users can also create and edit work items.

Some projects only have Private and Open access levels. This depends on the project template.

To change internal access in a team-managed project:
  1. Select the More actions (···) menu next to the team-managed project in the sidebar, and select Project settings.
  2. In the sidebar, navigate to access settings.
    1. In a service project, click People and access.
    2. In a software or business project, click Access.
  3. Below the title "People and access," click:
    1. Change internal access for service projects
    2. Change project access for software or business project.
  4. Select the desired access level, then click Change.

Control access to work items with work restrictions

In software and business projects, you can add work restrictions to work types. Work restrictions control which project roles can view newly created work items of that type.
👉 For example: You can restrict the custom Security vulnerability work type so that only the Security engineer role can view work items with that type.

You can’t add restrictions to request types in service projects.

To add a work restriction in a team-managed project:
  1. Select the More actions (···) menu next to the team-managed project in the sidebar, and select Project settings.
  2. In the sidebar, navigate to access settings and select Work types.
  3. Select the work type you want to add a restriction to.
  4. At the top of the page, click the lock icon.
  5. Select one or more roles, then click Restrict.
How was this lesson?