Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Unresolved
Component/s: Permissions - Configuring People, Roles and Permissions
Labels:
None

UIS:
1
Support reference count:
7
Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Description

Issue Summary

There are several default system groups added in Global permissions
i.e
Administrators, atlassian-addons-admin, system-administrators and trusted-users-<number>

The intention for the request is, as the site admins of instance, need to make sure who should have the permission to access the site. They have also grouped users so that it can add the corresponding groups on the Global Permission page.
However, there are some system groups that don't use and even cannot find them, which makes us worry about there might cause security breach in the worst case.

Notes

Access Global permissions in Jira/Confluence and we can see the default system groups. This should be hidden or given ability to site-admins to remove the group

Workaround

Currently there is no known workaround for this behavior. A workaround will be added here when available

Attachments

Issue Links

is related to

JRACLOUD-69679 Add the ability to manage the "atlassian-addons-project-access" role

Gathering Interest

JRACLOUD-70854 Ability to view the members of "atlassian-addons-admin" group.

Gathering Interest

mentioned in: Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Ku Ahmad Najmi Ku Jaafar (Inactive)

Votes:: 7 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 06/Sep/2019 4:14 AM

Updated:: 4 days ago 2:05 AM