It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

"Create" button in JIRA allows anyone to create issues in projects they don't have permissions to.

We're using the cloud version of JIRA and I have set permissions to only a select few role to create issues in each project (mostly I use roles to provide permission). 

Everything else otherwise works perfect; users can only browse projects they are added to. However, I just noticed that anyone is able to hit the "Create" button on the top nav and create issues in any of the project they want to. 

What am I doing wrong?

6 answers

1 accepted

0 votes
Answer accepted

please verify that project role has no jira-users group

Within the different project roles I have created, I have added users who belong to jira-software-users & jira-confluence-users but I have not associated any of the role directly with user-groups (not even sure how to do that). Is this creating the problem?

If so, these JIRA groups are assigned by default to each user based on application access and these groups are also essential for managing global permissions. 

Any solutions?

Joe_Pitt Community Leader Sep 06, 2016

Also make sure the permission scheme doesn't list jira-user or any other group with logon rights

And that the permission scheme does not have reporter or assignee in the Create Issues permission

Matt Doar [ServiceRocket] Thank you so much. This was exactly it.

0 votes

Hello Reetam,

Would you mind giving me the address to your instance so I can try to reproduce on mine and see if it's a possible bug?

Best Regards.

0 votes

Reetam, you can check within each project using Permission Helper, you select the user and it will show his permissions, if there is a group with such permission you can check if the others users are on this group(s) as well.

I checked your instance but could not identify the root without an example, so can you test this procedure? 

Also on this document you can check better how the permissions works, just in case you still have doubts.

Managing project permissions

Please let me know if it helped! 


Go to the permissions schemes page and go to the 'default permission scheme' (assuming that's the scheme you are using) and then under create issues ensure that the correct groups are there.


You can also check that the permission are correct in individual projects by going to the project summary page and going to permissions. 

Thanks All for the quick assistance. I checked the permission scheme and in a few of them, "create issue" permission was provided to the "reporter" which I believe gave everyone the permission to create issues in every available project through the "Create" button.

Removed it and now everything works just perfect.

Once again, big help. Thanks.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted in Jira Core

How to manage many similar workflows?

I have multiple projects that use variations of the same base workflow. The variations depend on the requirements of the project or issue type. The variations mostly come in the form of new statuses ...

2,413 views 10 4
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you