No, it's a lot more flexible than that - you usually devolve permissions to a project level, which understand permissions on a set of "if then" situations.
For example, if you have a permission scheme that says "team lead can assign" and leaves developers out, that answers your question. But you can set up a different project with a different scheme. Or keep it immensely simple and only have one permission scheme!
The "better still" bit is not quite as easy - although the question "who can assign" is fine, there's no link between "who is doing the assigning" and "who can be assigned". The permission for "can be assigned to" is not linked to the active user. You'll need to do some coding for that.
![Nic Brough [Adaptavist]](https://avatar-cdn.atlassian.com/053c857b7b2c424c1d3c24a86cb95aa9 "Nic Brough [Adaptavist]"){kind=avatar}
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.