Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

same group assignee permission

Paolo Torricelli June 23, 2014

hi all, i need to configure a view permission if the user is in the same group of the assignee and by default disable access to all other issue.

i didnt find any way to inherit "same group" permission.

any ideas?

tnx

2 answers

1 vote
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
June 23, 2014

There isn't a way to do this because it's not really that useful.

The main problem is that most people are always going to be in the same group as all the other users. "Can log into Jira" is the main (and often only!) group in Jira.

A secondary problem grows out of the many-group model - what's the rule when you've got a user with several groups? Does another user need to match all of them? Or a sub-set? Or any? You've said assignee, but what happens if you want to use another user field?

(I also suspect the code could be a nightmare in performance terms, but don't quote me)

Paolo Torricelli June 23, 2014

Thank you guys for trying: i've a very large jira installation with thousand users.

Inside a very trafficated project (helpdesk) there are already permission schemas and roles, all works fine.

....till now, that i have to permit to a group to see-only other same-group issue

i wanna manage it with a custom field that will be filled via a jelly script if assignee is inside this special group, next change the roles picking up that custom field.

i dont like so much this solution because of jelly script: do you think it is possible to have a formula-like field on which manage security? (or a sql-like trigger)

Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
June 24, 2014

That's the point though - there's no way to do "user 1 is in the same group as user 2", because it's a) almost always true and b) usually a lot more complex than it sounds.

I think you're going in the right direction though - catch a special group or something and store it on the issue in a "group picker field" - that will let you use it in permissions. I'd skip Jelly and use the script-runner plugin to create a post-function or listener to update the group field as necessary

0 votes
Pedro Souza
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 23, 2014

Hello,

I think you can configure this project permissions, customizing the Browse/Issues permissions for those specific groups.

As far as I know there is no way to configure it dinamically, however, may have some third-party plugin to achieve this, but I'm not sure.

Cheers.

Suggest an answer

Log in or Sign up to answer