Tried to find 3rd party extensions but ondemand does not allow.
This is unusual. In order to login the user only needs to be in the group - jira-users. If he has this group membership then he will be able to log in.
Can you provide more information on how you are removing the users from browse project permission?
In order to restrict users access to multiple projects, you can provide browse project permission to a project role say Users. Then you can explicitly add users to the project role - Users within the project. This way only the users within the project who has the project role - Users will have the access to view that project.
Let me know if you require further clarification
You don't need add-ons.
Split the permissions. In your "global permissions" settings, there's a line that means "can log in". You probably have the group "Jira users" in it. That's how Jira knows to let people log in.
You have then used "jira users" to grant "browse" in projects. (Not your fault probably - Atlassian have this as a default, which is fine for getting started but sets a really dreadful example for anyone who wants to lock it down later, like you do). You need to get rid of that. I usually recommend using jira-user for "can log in" and nothing else. For granting users the access they need to their projects after you stop granting it via jira-users, Rahul has coverd that very well already.
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot