Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Extending access rights for Jira issues

Curtis Carmicha1
Curtis Carmichael October 30, 2012

Initially, we wanted non-engineering people to have access to be able to raise new issues (Bugs and Enhancements only) in a “Global Issue Tracking” Jira project only. Thus they should have no other access rights to the other Jira projects.

However, because of the way we move issues around the projects to fix them, it means that non engineering people can’t search and see the status of the bugs they or others raised.

One way we may be able to fix this is to extend the minimum access rights to include the following:

  • Be able to search and view issues (Bugs and Enhancements only) on all projects (not just “Global Issue Tracking).
  • Be able to add comments on issues (bugs and Enhancements Only). They should not be able to delete or edit, just add comments.

I was curious how we might be able to go about doing this in Jira?

Answer
Watch
Like Be the first to like this
294 views

2 answers

0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 30, 2012

Actually, no, moving Jira issues around is not "bad", it's simply one way to do it. Issue linking can be just as "bad" because you can end up having disparate data on separate issues. Many places use a mix of both.

However you approach this one though, you can't do "view/edit/comment" by issue type. That is done at a *project* level by the permission schemes, so when you say "person A can see issues in project X", then they get to see all of them. Similarly with edit, comment, and so-on, it won't look at the issue types.

There is a workaround for some of us - you can use "issue security" to hide issues. To do it automatically, you need a plugin to set the security automatically as the issue goes into a status where it should be hidden (which you can't do in OnDemand). For this trick, it's irrelevant whether you move issues or use linking.

Another trick would be to enable the "reporter browse" permission - that allows you to include the reporter as someone who can see an issue without giving them access to the other issues in the project. Atlassian themselves use it on their support Jira (when I raise issues in there, I can only see mine, and ones other people explicitly include me in). I think that would mostly solve your problem, combined with your current practice of moving issues, but I do not know if that is available in OnDemand.

View More Comments
Curtis Carmicha1
Curtis Carmichael October 30, 2012

Thanks Nic. Do you recall where the "reporter browse" permission can be set up in your version of Jira?

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 31, 2012

Yup - https://confluence.atlassian.com/display/JIRA/Current+Reporter+Browse+Project+Permission

It's been there since at least 3.6, and probably earlier. Take heed of the warning box - the looping is not fun to break out of

Like
Curtis Carmicha1
Curtis Carmichael October 31, 2012

Thanks. Is there another way I can do this without risking the infinite loop?

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 31, 2012

No, you need to educate your administrators to be careful when they are creating/editing permission schemes

Most of the time, it won't loop though, just do nothing.

Like
Reply
0 votes
Florin Manaila4
Florin Manaila
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 30, 2012

Moving issues around in JIRA from one project to another is bad. The overhead needed to do that can quickly become overwhelming for your instance and you'll notice that as your userbase grows. I would recommend leaving the issues in the "Global Issue Tracking" and use issue links to delegate to other projects. This will also fix the permission problem you have.

HTH

View More Comments
Curtis Carmicha1
Curtis Carmichael October 30, 2012

Thanks for your suggestion. Can you share how I can set up issue links and setting up the permissions I need with those issue links?

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 30, 2012

With issue links, it's Admin -> Linking - you should be able to enable it there, and maintain your link types.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events