How to give access to just one project

I don't think the permisions setup in JIRA could be any more confusing.

OMFG, this is so damned confusing. Really, Atlassian, I want the normal security groups, except I want to limit which projects a user sees and can access. Why is this soooo complicated? This is unreal.

What did I expect to find? In the user record, a set of checkboxes in a tab. One is for access to all projects, If you uncheck that, then you choose which projects the user has access to, one per checkbox.

It's incredible how complicated a process you guys turn this into. Been pulling my hair for more than an hour on this now, it looks like I a large chunk of my day will go into this insanely complicated task.

"This user can access only this project" -> Are you all dumb in Attlasian and you did not figure out that that would be most common user request? Really? Have you bumped your head?

I can not f**** believe how much hassle is required to achieve this ... UNBELIEVABLE!!! 

"It really isn't as bad as other people make it out to be." -> yes it is. 

If you can describe a use case scenario is as "User can access project", that means that UIX should follow this scenario with "Chose project, choose user, assign" - not to do "just this 27 simple steps". That is bad UIX design by itself. 

Very confusing. Really should be easier to do this. Still trying to setup an Account Manager role for a specific project. This person should only have access to Project XYZ and should only be able to do limited create issue, add comments, add attachment, etc.

1. Created Account Manager role.

2. Project Permissions. You can't assign more than one permission scheme to a project. So I copied default permission scheme and added the (extra) specific permissions I wanted for project role: Account manager.

3. Associated this new permission scheme to Project XYZ.

4. Created test user and assigned test user to role Account Manager.

5. WTF! A user has to be assigned to a group. Groups have global permissions. So I removed account manager from users and cannot login. Created account-manager group and assigned user to account-manager group. It can login but gets blank dashboard with login link.

Hey Atlassian, could you make this any more difficult?

I am now into phase to kill someone...

You need to create a Permission Scheme and assign the Project Permissions for that particular project. Just create a project role for such users, whom you want to restrict to a single project and assign them browse project permission for that project itself.

I was thinking of adopting JIRA, but for the reasons above I'll stick to my current solution...

I couldn't agree more, this is the most confusing user system I have ever used.  Serious guys! Fix this or provide better training.  All I want to do is say User A has access to only Projects X, Y and not Z.  This shouldn't be that hard! 

I've been banging my head on the wall over this issue for the past few days. I have multiple projects, and multiple external teams working on different projects. I want to limit access and visibility of specific teams to specific projects and confluence spaces. The security/permissions scheme design on Atlassian platform is not only non-intuitive, and extremely laborious, it is plain stupid. 

@Logostech Atlassian Support Is there any way of achieving project level access control without going through such a laborious process for each project? How about a tabular representation of the permission scheme where I can edit all cells without having to click through Add for each and every permission item?

hi

you could start by readin this

https://confluence.atlassian.com/display/JIRA/Managing+Project+Permissions

i prefer setting up Permission Schemes that are based on Project Roles so the Project Admin can easily choose which users should have access to browse the project and wich users should be able to assign and be assigned

besides you may create a sketch for your self and plan any kinds of permissions

Hi Stine

This is related to Browse Projects in the Permissions Scheme settings. So, I believe that you'll be able to do it using a single Permission Scheme settings and an user group for the related project.

In other words, as an example, you'll have to:

1. Add this user to a single group

2. Change the related project role using the new group

3. In a new permission scheme, just change the Browse Projects value with the related group

4. Enable this new permission scheme in the related project.

After that, only the users members of the related group will be able to access that project. So, to avoid the access to other projects, perhaps you should review all the procedures and try to apply this kind of approach to other projects.

Also, this is the documentation related to this:

https://confluence.atlassian.com/display/JIRA/Managing+Project+Permissions

In case of further assistance, try to raise a new support ticket,

Cheers,

Paulo Renato

Hi, I found the solution for this (very easy one): In the Permission Scheme (FYI, I just have one Permission Scheme for all projects - both internal and external with customer). In this Permission Scheme, you assign the permission by Project Role not group or anything else. 

Then, inside the project, you assign your clients to a Project role.

Then, they can only see the projects they have the role.

Hope it help :)

This is how I achieved it :

• Create a new project role - "Client". To achieve this, do :
  • Go to JIRA Settings and Choose Project Role
• Add client people and assign them "Client" role. To achieve this, do :
  • Go to Project Settings -> People section
• Change permission scheme of the project from old to new one. To achieve this, do :
  • Go to JIRA settings, copy default permission scheme of your project and create a duplicate one
  • In the new permissions scheme, remove permissions from "Any logged in user". Instead assign to "Client" project role wherever necessary.
• Done!

.

This is bhaaad

So I created a project that i don't even have access to. WTH? I have literally spent hours trying to create 2 projects and verify that 1 other user cannot create more projects or have access to everything else. 

Maybe a video to show the 14 step process would be good. this is for the birds, finding another product. If you cannot set up a user in 2 hours intuitively, i hate to think what the rest of the product is like

The explanation and diagram on this linked doco page is clear. I like the Jira security layers, they're not difficult to work with and make perfect sense, try mapping your use case to the diagram on this page.

Atlassian Doco->configuring-permissions-947188734

Cheers,

Pete Q

I don't know if this has changed with versions, but it seems to be quite easy to do this now...

How about these steps:

1. Go to Project Administration -> Roles
2. Edit the Users project roles and remove jira-users
3. Add the individual users or groups you want to have access to the project.

I don't think you need to mess with permission schemes at all.

At the and, I have managed to achieve mentioned. 

However - if I have to do all those steps: http://blogs.2i-it.com/how-to-configure-confluence-and-jira-to-grant-a-group-of-users-access-to-specific-spaces-and-projects/ in order to achieve simple: this users/groups can access/see this project than really, someone is really stupid here, either me which requires for most common operation to be executed in as less clicks as possible, or people behind this functionality which in 6 versions of this product could not figure out the common need of the users and force them to spend an f**** hour to achieve the same.

I have recorded a series of steps here to give a particular Group access only to selected Spaces in Confluence and selected Projects in JIRA. Hope this helps.

What is the permission that user/group should have in order to be able to login?

Is it MANDATORY to have this user assigned to a project role, is it enough if this user is assigned to the project, the project filter and the project board?