Security Best Practices

We've had our Production Jira installation in place for several years. Previously, it was managed only by the various development groups. Over time, it's grown and we're now seeing security issues with users having more permissions than they need. Now that the system is under IT management, we'd like to address this concern and are looking for best practice documentation on how to properly set up groups/permission schemes/etc...

Do you have such documentation available? If so, can you provide links? Thanks much

1 answer

1 accepted

0 votes
Accepted answer
Bruno Rosa Atlassian Team Feb 23, 2013

Hi There,

Here are some documentations regarding permissions at project and issues level:

JIRA allows you to control who can access your project, and exactly what they can do (e.g. "Work on Issues", "Comment on Issues", "Assign Issues"), by using project permissions. You can also control access to individual issues by using security levels. You can choose to grant access to specific users, or groups, or roles (note that roles are often the easiest to manage).

Permission Scheme — the project's permission scheme determines who has permission to view or change issues in this project.

Issue Security Scheme — the project's issue security scheme determines what visibility levels issues in this project can have (see issue-level security).

Here are some general documentations about groups and roles:

Hope this helps!


Bruno Rosa

Suggest an answer

Log in or Sign up to answer
Community showcase
Published yesterday in Agile

How Scrum works? It starts with training and education

To answer “How scrum works,” most of the teams I've worked with first addressed the question: “where to start?”  That question applies to both implementation and improvements on the Scrum framew...

155 views 3 5
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you