History | Log In     View a printable version of the current page.  
   HOME       BROWSE PROJECT       FIND ISSUES   
    QUICK SEARCH:  
Issue Details (XML | Word | Printable)

Key: JRA-6381
Type: New Feature New Feature
Status: Open Open
Priority: Major Major
Assignee: Unassigned
Reporter: Jeff Turner [Atlassian]
Votes: 208
Watchers: 112
Operations

If you were logged in you would be able to see more operations.
JIRA

Permissions per workflow step / state

Created: 10/Apr/05 10:07 PM   Updated: 04/Apr/08 11:06 AM
Component/s: Workflow, Permissions Security
Affects Version/s: None
Fix Version/s: None

Time Tracking:
Not Specified

Issue Links:
Duplicate
 
Reference
 

Participants: Andrew Perepelytsya, Darren Bell, Inger Henning, Jakob, Jeff Putsch, Jeff Turner [Atlassian], jira@atlassian.com, John Allen, Kalle Hallivuori, Leena Romppainen, Monika Joshi, Nikolay Gorbunov, Ray Oei [Furore], Sebastian Thies, Tal Abramson and Wiro van Schaik
Since last comment: 5 weeks, 2 days ago
Support reference count: 9
Labels:


 Description  « Hide
In many situations it would be useful if permissions could vary based on the state an issue is in. The most obvious example is making Closed issues non-editable. Ideally any permission (edit, delete, link, assign etc) should be variable by step, and for some, by transition (eg. assignees).

 All   Comments   Work Log   Change History      Sort Order: Ascending order - Click to sort in descending order
[ Permlink | « Hide ]
Ray Oei [Furore] - 20/Oct/05 03:18 AM
The current permission scheme is not flexible enough. For instance: someone should be able to reopen an issue but not resolve it (Q&A department for instance).
See also JRA-5783.

[ Permlink | « Hide ]
Jakob - 21/Dec/05 03:25 AM
Under workflow, transition, it is possible to define who is allowed to do this transactions by adding a condition to the transition. Would it also be possible to define the team that can be assigned to this issue in the new state.

[ Permlink | « Hide ]
Jeff Turner [Atlassian] - 01/Mar/06 05:47 PM
It will be possible to restrict permissions per workflow step in 3.6, by adding 'properties' to workflow steps. Eg. by setting 'jira.permission.editable.group' to 'jira-developers' in the 'Resolved' step, only jira-developers will be able to edit resolved issues. It will also be possible for parent issues to restrict permissions on their subtasks

There won't be a pretty interface for setting permissions per step in 3.6, so I'd hesitate to call this feature 'done' just yet.


[ Permlink | « Hide ]
Leena Romppainen - 02/May/06 06:21 AM
Adding a note here just in case: Current workflow based plugin has a bug that disables sub-task editing. For more info, see http://jira.atlassian.com/browse/JRA-10057

[ Permlink | « Hide ]
Wiro van Schaik - 15/May/06 10:28 AM
I would like to enforce that only the person that has created an issue or the projectadministrator is able to close an issue. I can't think of a way how to do this now in Jira (we have 3.6.1 Enterprise) and it seems that an implementation of this issue would possible enable this so my vote is in.

[ Permlink | « Hide ]
Wiro van Schaik - 15/May/06 10:44 AM
Oops, I just found out that my request was actually a duplicate of JRA-4050 and thus is possible in the Enterprise version so please disregard my previous comment.

[ Permlink | « Hide ]
Jeff Turner [Atlassian] - 24/May/06 01:19 AM
FWIW, the status on this is as follows.

We did some work to allow this in 3.6. About halfway we realised this introduces a whole extra layer of complexity to bulk operations, particularly bulk move, which we wouldn't have time to address in the 3.6 timeframe. I can't say when we'll get to this again, but since a fair bit of work has been done already it shouldn't be in the too distant future.


[ Permlink | « Hide ]
Kalle Hallivuori - 31/Aug/06 06:25 AM
Hi.

I'd like to further encourage finishing this work on finer permission control.

It appears that this is an issue that probably blocks us from upgrading, as we are dependent of the workflow permissions plugin long as this remains incomplete, and bulk operations are also in use.

Power to you. Keep up the great quality and reliability.

Cheers,

Kalle Hallivuori / Sulake IT Support


[ Permlink | « Hide ]
Ray Oei [Furore] - 09/Feb/07 01:48 AM
A lot of votes...
I know you guys are very busy and there are other pressing issues but any status update on this {big} one?

[ Permlink | « Hide ]
John Allen - 27/Mar/07 11:16 AM
nudge nudge.

[ Permlink | « Hide ]
Darren Bell - 18/Jul/07 05:08 AM
^^ bump ^^ Any news guys?

[ Permlink | « Hide ]
Andrew Perepelytsya - 18/Jul/07 09:15 AM
Darren, JIRA Suite utilities/extension pack provides this functionality among others, you may want to have a look. We have configured more complex workflows with permissions for http://mule.mulesource.org/jira

[ Permlink | « Hide ]
jira@atlassian.com - 18/Jul/07 09:26 AM
Abwesenheitsnotiz:

Vielen Dank für Ihre Mitteilung.

Momentan bin ich abwesend.

Ich bin ab 23.07.2007 wieder für Sie da. Ihre Mail wird nicht automatisch weitergeleitet.

Falls Ihr Anliegen vorher Aufmerksamkeit erfordert, wenden Sie sich bitte an +41 41 727 2131 oder support@systransis.ch

Notice of absence:

Thank very much you for your inquiry.

At the moment I am away from my desk and my e-mail.

I will be back on 23 Julz 2007. Your e-mail will NOT be forwarded automatically.

Should you need to contact someone before this date, please call +41 41 727 2131 or send a message to support@systransis.ch


[ Permlink | « Hide ]
Nikolay Gorbunov - 17/Aug/07 07:01 AM
Hi folks,

We're using 3.8, the issue still persists. Did I get it right that there are some plugins that solve the problem?


[ Permlink | « Hide ]
Nikolay Gorbunov - 13/Sep/07 08:56 AM
Ping ping ping.

Allowing an issue to get assigned to a member of different group than one which should be responsible for handling the issue in a given state can result in losing the issue which's really bad.

E.g. if I transition the issue to "To Be Documented" but assign it to Peter which's a QA guy (say, by mistake), the issue will likely get lost because Peter knows he never gets issues in "To Be Documented" and may have filters saved which prevent him from seeing those.

Email notifications on "Issue Assigned" event partly help, yet they don't give a warranty unless Peter is 0% lazy and has less than 200% workload.


[ Permlink | « Hide ]
Tal Abramson - 06/Feb/08 09:22 AM - edited
Guys , any news regarding this one?
i am facing a customer who wishes the reporter to be able to do assign only once
so i have a customized workflow with a "assign" screen
but if the reporter does not have the assign permission , he don't see the Assignee field
but if he has the assign permission , he will always have the operation Assign , arrrrrrr

any workaround ?


[ Permlink | « Hide ]
Monika Joshi - 06/Feb/08 09:26 AM
my new corp id is monika.joshi@corp.aol.com , Pls send all your mails to my new corp id

[ Permlink | « Hide ]
Sebastian Thies - 06/Feb/08 09:53 AM
Hi Tal,
you could add a custom user picker to your assign screen and use Phil Herbst's Assign From Custom Field Plugin (http://confluence.atlassian.com/display/JIRAEXT/Assign+From+Customfield+Plugin) in your workflow. Then the reporter does not need the assign pemission.

[ Permlink | « Hide ]
Tal Abramson - 07/Feb/08 01:13 AM
Sebastian you rock
thanks a lot , i'll use it

[ Permlink | « Hide ]
Inger Henning - 19/Feb/08 09:29 AM
I'd be very interested in setting up a situation where you cannot comment on a closed issue!

[ Permlink | « Hide ]
Jeff Putsch - 04/Apr/08 11:06 AM
We would very much like to restrict the ability to comment based on workflow state.

Jeff.



Powered by Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.12.3-#302) - Bug/feature request - Atlassian news - Contact Administrators