Hi,
I was wondering if we can restrict access to "Reports" on the Summary page of a JIRA project to a specific user group.
I would like only administrators and Project leads to be able to run the reports.
Thank You
While this is not a secure way, it will help avoiding people from directly using the links available on the project summary page.
Add this to your announcement banner (change the group name from "jira-administrators" to whatever needed)
<script type='text/javascript'> AJS.$(document).ready(function () { AJS.$.getJSON(AJS.contextPath() + '/rest/api/latest/user?expand=groups&username=' + AJS.$('#header-details-user-fullname').attr('data-username'), function (data) { var allowed = false; var membership = "jira-administrators"; AJS.$(data.groups.items).each(function (aa) { if (this.name == membership) { allowed = true; } }); if (!allowed) { AJS.$('#fragprojectreports').hide(); } }); }); </script>
This works, however once you click off the summary page and click on another tab (Issues) for example and click back on Summary page. You can see the reports.
Is there any other alternative?
Thank you
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Browsers do not call the ready function when back button is pressed and I guess it is tricky to get that done. Diff browsers may behave differently too. A complete solution will require coding as Nic said.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
No, not without coding.
It's pretty pointless too - your users can still get at the data that the reports show, so why make it difficult for them?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You'll need code to remove the options from the menu, and code to prevent them using the urls directly (although only someone who knows Jira would work out how to get there). But yes, it's possible.
My point about it being pointless stands though - there's nothing to stop your users simply grabbing a download of a list of issues and generating their own (possibly inaccurate) versions from the raw data.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.