Jira security scheme

Kaitlin July 24, 2013

We are in the initial phase of setting up our security model for Jira and want to be sure we are on the correct track.

Here is a little background on our Jira instance: We have 7 default projects for support and project requests and a total of about 40 individual issue types associated with the projects. We want the reporter to be able to view and track their issue and will have the reporter assign issues to specific group(s) in which the members of the group(s) are the only ones that will be able to work on the issue and re-assign as needed. Would the best way to set this up be to create an issue scheme giving browse permissions to the reporter and “developer” access to the assignee (group) then map it to the project?

If it is done this way will the groups be able to be modified by a designated project administrator? Or would we have to use roles for that?

Thanks, Kaitlin

1 answer

0 votes
Jobin Kuruvilla [Adaptavist]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
July 24, 2013

Project Administrator won't be able to modify groups. Instead you can give the permission to the roles because a project admin can modify the roles. In the roles, you can add groups or individuals.

Kaitlin July 24, 2013

Thanks Jobin. If the roles remain the same across all projects, is there any way to re-use roles created in existing projects?

Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
July 24, 2013

A role is global - if you add the role of "penguin herder", it appears in all projects, and project admins can nominate whoever they lilke to herd penguins. In THEIR project.

Also, you need to look at the permission schemes and workflows. You might have 20 people flagged as penguin herders, but if your permission scheme doesn't say things like "penguin herders can edit issues", then it won't be of any use. I get it here sometimes - "we put Fred in role of Tester, but he still can't do anything"... "Yes, because Tester does nothing in your project - either put Fred into the role of developer, or change schemes so that Tester is actually used here"

Suggest an answer

Log in or Sign up to answer