The default is to let your users in, but "open to the public" suggests you or one of your admins has enabled anonymous access. Is that what you are seeing? People can see your issues in projects without having to log it at all?
If so, take a look at the permission schemes. Look at the "browse project" line, and I think you'll find it includes group:anyone - that needs to be removed.
I'm John Allspaw, co-founder of Adaptive Capacity Labs, where we help teams use their incidents to learn and improve. We bring research-driven methods and approaches to drive effective inciden...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs