Tried to find 3rd party extensions but ondemand does not allow.
This is unusual. In order to login the user only needs to be in the group - jira-users. If he has this group membership then he will be able to log in.
Can you provide more information on how you are removing the users from browse project permission?
In order to restrict users access to multiple projects, you can provide browse project permission to a project role say Users. Then you can explicitly add users to the project role - Users within the project. This way only the users within the project who has the project role - Users will have the access to view that project.
Let me know if you require further clarification
You don't need add-ons.
Split the permissions. In your "global permissions" settings, there's a line that means "can log in". You probably have the group "Jira users" in it. That's how Jira knows to let people log in.
You have then used "jira users" to grant "browse" in projects. (Not your fault probably - Atlassian have this as a default, which is fine for getting started but sets a really dreadful example for anyone who wants to lock it down later, like you do). You need to get rid of that. I usually recommend using jira-user for "can log in" and nothing else. For granting users the access they need to their projects after you stop granting it via jira-users, Rahul has coverd that very well already.
Hey Atlassian Community! Today we are launching a bunch of customer stories about the amazing work teams, like Dropbox and Twilio, are doing with Jira. You can check out the stories here. The thi...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG