Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Issue with workflow transition permissions and moving issues

Neil Taylor
Neil Taylor October 12, 2015

I'm assuming I am not the first to see this, but I couldn't find anything by searching on this specific issue.  I have several workflows that require approvals and have conditions set up to only allow users in a role to make the transition happen.  I recently saw someone create an issue in the project with a different issue type (Task) and then they moved the issue to being the issue type that requires an approval (Access Request).  They were able to specify that they wanted the issue to be in "Approved" status on the move instead of "New", even though if they had created the issue correctly in the right issue type to begin with, they would not have been able to execute that transition.  Has anyone seen this and if so are there any answers to lock this down?

 

Thanks!

Answer
Watch
Like Mridula Chintalacheruvu likes this
1609 views

2 answers

2 votes
GabrielleJ
GabrielleJ
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 12, 2015

When they were asked for that "Status", did they try to change the initial status? Did JIRA allow? AFAIK, it won't because of the permissions.

View More Comments
Neil Taylor
Neil Taylor October 12, 2015

They never changed the initial status - when they were able to change the status was during the move - on the move screen it gives the option to change issue type and then asks which status in the new issue that this ticket should be in and provides a drop down list of all statuses in the workflow that they are entering.

Like
GabrielleJ
GabrielleJ
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 12, 2015

And what happens when they select other than the initial status from the dropdown? Does JIRA allows it?

Like
Neil Taylor
Neil Taylor October 12, 2015

Yes, JIRA allowed them to put it into "Approved" status instead of the initial status for the flow, "New" - there is a condition on the workflow to go from New to Approved that they must be in a certain role - this works as expected when going through the workflow. It's just the loophole with Moving an issue from one type to another

Like
GabrielleJ
GabrielleJ
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 12, 2015

So the user that did it have the correct access/role in your Permission Scheme "Move Issues". It will move it then and an option to populate/update some of the custom fields. This will not respect the workflow validations because they will not be triggered.

Like
Neil Taylor
Neil Taylor October 12, 2015

Right - that makes sense - but is there any way to limit this? That is a relatively large loophole if users can bypass approval processes

Like
GabrielleJ
GabrielleJ
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 12, 2015

Limit the "Move issues" to a certain group/role only (like Project Admins role only). I certainly don't like regular users to do this.

Like
Reply
1 vote
Sune Edmund Pedersen
Sune Edmund Pedersen March 22, 2016

Yes, the Move function enables the user to move between status without any of the triggers and validatrors configured in the workflows. This is a serious concern when relying on JIRA for controlled workflows.

I have tried to find ways to circumvent this as I like users to be able to move issues to other project if they have created them in the wrong project (happens quite often i my organisation). 

I have found no solution and have disabled move for anybody but the project manager.

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events