How do you prevent project administrators from assigning (specific) user groups to project roles in the project?

Hi,

Unfortunately some of our project administrators occasionaly assign the "jira-users" group to a project role on their project, which results in potentially disclosing project data to undesired groups of users. The users are internal and client users in quite a large organization where the projects are highly independend.

Currently, we just try to teach our project admins in not doing so. However in some cases this doesn't help. We manually remove the group from the project again.

I am interested to hear, how you handle this in your organisation.

Additionally, maybe you know os a setting or plugin, which I am failing to find, which disables the project role assignment by user group.

Thanks,

Oliver

2 answers

1 accepted

This widget could not be displayed.

You can't disable it (without coding in the core anyway)

I've always handled it with education myself, as you've tried. Tell administrators not to use the group in the roles if they want any form of privacy. In the rare cases where they repeatedly make the mistake, the stick comes out - remove them from the admin roles and tell their boss that they're not fit for the role.

I like the latter :-)

Sadly, it's the only way to deal with the ones who won't listen. Fortunately, in my experience, they are very few and far-between. On the rare times I've had to go to someone's boss and say "we have a problem with this user", I've always had a reply along the lines of "you aren't the first person to tell me that".

This widget could not be displayed.

There isn't anything you can do via configurations to prevent this. Actually, it is a good practice to use groups in project roles.

If you want to restrict groups like jira-users used in the project roles, you are looking at some plugins and disabling of standard functionality which does that.

When talking about looking at some plugins: Do you know of any existing plugin in particular?

Regarding the good practics of uing groups in project roles: Basically I agree with you. Unfortunately we do not have project based group management in place. Hence the JIRA admins manage the groups on request and and project admins do not have immidiate visibility in nor control of the group members. This is why we educate our users to assign project mambers individually.

Suggest an answer

Log in or Sign up to answer
Atlassian Summit 2018

Meet the community IRL

Atlassian Summit is an excellent opportunity for in-person support, training, and networking.

Learn more
Community showcase
Posted Wednesday in New to Jira

Are you planning to trial, or are currently trialling Jira Software? - We want to talk to you!

Hello! I'm Rayen, a product manager at Atlassian. My team and I are working hard to improve the trial experience for Jira Software Cloud. We are interested in   talking to 20 people planning t...

285 views 5 0
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you