Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to set by default Access to Private for a next-gen project ?

Dominique Morel
Dominique Morel February 19, 2019

We have created some specific group for users external to the company and we are able to manage access to different Jira project with theses group.

As we cannot define by default the Access parameters for the next-gen project, if one of our user is created a next-gen project without setting the access to Private, all internal and external users have access to the project.

How to configure this ?

Answer
Watch
Like Yavuz Acar likes this
4175 views

4 answers

3 votes
Martin Perry
Martin Perry
Contributor
February 5, 2020

At a bare minimum it should be possible to change the default security setting, needing to rely on users to set the security setting perfectly every time is a recipe for chaos.

Reply
1 vote
Joseph Arrieta
Joseph Arrieta
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 2, 2020

Please set the default to Private, Open is a really bad choice for the default, to make this stuff even worst, if you give access to people in JIRA and do the proper incantations so they can only see 1 project, to your surprise,  they will have access to all Next-gen project that are Open or even Limited. This is bad.

 

Please change the default to Private, at least in this way users will know they have to set access correctly, because no one except them will have visibility of the project.

Reply
1 vote
Angélica Luz
Angélica Luz
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 20, 2019

Hi Dominique,

Next-gen projects are independent projects, that's why users can create this type of project, because fields and issue types, for example, are specific for the project, it won't affect any other next-gen or classic project.

If they created the project without setting it to private, they can change the access by going to Project settings > Details.

Hope this helps!
If you have any other questions, please let us know.

Regards,
Angélica

View More Comments
Dominique Morel
Dominique Morel February 20, 2019

Hi Angelica,

Thanks for your answer, but as user are not aware or interested by "security", the question is not "how to change access mode", but how to set by default, for all next-gen project the access mode to "Private".

If not possible, it's unbelievable that Atlassian integrate new features without taking care of security criteria. When you have more than 150 users, you cannot verify all the settings...

Best regards

Like # people like this
Angélica Luz
Angélica Luz
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 21, 2019

Hi Dominique,

Currently, the default access will be "Open" unless they change before creating the project.
We have a feature request suggesting the implementation of this ability:

https://jira.atlassian.com/browse/JSWCLOUD-17234

Please, click on vote and watch to receive updates about the feature.

Regards,
Angélica

Like
Jan Jones
Jan Jones
Contributor
August 19, 2019

We also just discovered to our horror that next-gen projects are open by default.

What on earth made Atlassian think this was a sensible security default!?

Like # people like this
Martin Perry
Martin Perry
Contributor
February 5, 2020

I concur, this is a terrible security setting to choose as the default and this is made even worse by not allowing the default to be changed.

Like # people like this
Marco Boonstra
Marco Boonstra
Contributor
February 18, 2021

i agree this is terrible from security perspective. Should change asap. Will vote for this change.

Like # people like this
Deleted user January 4, 2022

@Angélica Luz it is a security breach that the default of any project is set to Open. Can this default be set to Private?

I have also voted and placed my comment on the JSWCLOUD-17234

Like
Reply
0 votes
Angélica Luz
Angélica Luz
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 5, 2022

Hello @[deleted],

It's not possible to change this setting.

When I answered this question in 2019 the project creation screen was different and now, when creating a new team-managed (former next-gen) project, no access is set by default, the person who is creating the project must select the access level and the first option is the Private one.

Screen Shot 2022-01-05 at 15.19.26.png

As mentioned on the feature request ticket, they are not working to implement this feature and we will need to wait for further updates.

Kind regards,
Angélica

View More Comments
Deleted user January 7, 2022

Thanks for your reply, but this means everyone within the account will be able to see other projects if this is not set to private as per default.

I am sure that many accounts are managing different 3rd party vendors will lead to sharing internal or from other external Project information to be mislead.

As you might be aware, a lot of Jira users will just click through things and will disregard the settings. Not making this Private as per default is not ideal for legal and compliance

Like César Delisle likes this
Holden Parker
Holden Parker
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 27, 2022

This issue and not being able to configure the columns for boards through the rest API is really making our Jira Board automation, not so automated. 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events