Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Issues viewable by Reporter only but commentable by everyone?

Julian Emmerling
Julian Emmerling March 7, 2018

Hi everyone,

I am currently struggling with a permission/issue security issue I can't wrap my head around.

We want to restrict the issues in our project to only be viewed by the reporter. I was able to easily configure that with a new issue securty scheme which only grants permissions to our service desk team and the reporter.

issue security scheme.PNG

However what happens with that configuration is that another customer (same Organization) is not able to comment on an issue when he is not the reporter (comments via email). The following message is found in the processing log:

processing log.PNG

Additionally when I use the permission helper in the issue it complains that the user that can't comment is not member of my security scheme.

I know I can edit the issue security scheme to add another role or group to it and grant the customer the permission this way. However if I do that the customer can see all issues of his organization, which we want to prevent.

Answer
Watch
Like Be the first to like this
494 views

2 answers

1 vote
Vasiliy Zverev
Vasiliy Zverev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 7, 2018

Issue sequrity scheme allows to set visibility on each issue into a project/

If you want to grant permission for all project it is better to use permission scheme and permission for browse project.

View More Comments
Julian Emmerling
Julian Emmerling March 7, 2018

I see.

How would I set up the permissions so only the reporter can view his issues and everyone can comment?

Also how would I go about further granting/restriction permissions for single organizations? I need the possibility to grant managers of the customer also permission to view the issue. Would I do that with the issue security schemes or the permission scheme?

Like
Vasiliy Zverev
Vasiliy Zverev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 7, 2018

Is it good idea to allow comment issues, but not view it?

Set view permission for organisations could be implemented with sequrity schema. Create a group for each organisation and sequrity level. Add each group to each sequrity level. Then for each issue you should set respective sequrit level.

Like
Julian Emmerling
Julian Emmerling March 7, 2018

Well, ideally the reporter and the request participants can view the issue. Using securtiy schemes it was not possible to add request participants so we decided to do only the reporter. Maybe thats possible with permissions?

We need everyone to comment via mail (for obvious reasons) but not be able to browse the issue for compliance reasons - that should be reserved for managers in the future.

Like
Reply
0 votes
Danyal Iqbal
Danyal Iqbal
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 7, 2018

Use permission scheme . Security levels should be used to manage partner accounts or customer accounts with multiple users.

View More Comments
Georg Karner
Georg Karner March 9, 2018

I tried to do that, but I ran into issues.

For my case I would need to remove "Service Desk customer - portal access" from the Browse Projects permission. However, as soon as I do that JIRA complains about permission errors that need to be fixed (cannot dismiss) and functionality gets impacted.

 

I tried again with the issue security scheme in a dummy project and it works as expected there. This leads me to believe the error im getting in the processing log is solveable somehow.

What I also noticed in our productive project with the problematic security scheme enabled:

Comments via email from non-reporters on an issue get declined with the error in my screenshot (no permission to view attachement), but attachements sent with the email still get attached to the issue.

Meanwhile Atlassian advised me to disable the "cr-share-request" module - I will try that but I'm not sure what functionality this will impact.

Like
Julian Emmerling
Julian Emmerling March 9, 2018

whoops, logged in with the wrong account - thats my reply ;)

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events