Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Not a bug
Priority: Low
Fix Version/s: None
Affects Version/s: 7.9.0
Component/s: Administration - Workflows, REST API
Labels:
- orange
- pse-request

Introduced in Version:
7.09
Support reference count:
19
Symptom Severity:
Severity 3 - Minor
UIS:
19
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Summary

If no one has permission to clone an issue when it's in the initial workflow status (the status the issue will be upon being created), it's not possible to create a new issue via REST API, if the issue to be created uses the same workflow.

Steps to reproduce

Edit the workflow of issue type T in project P
Click View Properties at the initial step e.g. Open

Add this property:

Key: jira.permission.createclone.denied
Value: true

Publish the workflow
Create a new issue P-1 via GUI using issue type T in project P

Expected behavior

No one can clone P-1
A new issue P-2 can be created via REST API using issue type T in project P (similar to how P-1 can be created via GUI)

Actual behavior

No one can clone P-1
A new issue P-2 can't be created via REST API using issue type T in project P

The following 400 Bad Request error is thrown:

{
    "errorMessages": [],
    "errors": {
        "summary": "Field 'summary' cannot be set. It is not on the appropriate screen, or unknown."
    }
}

This error is invalid because:

Summary field is a known, required system field
It's available on the Create Issue screen of issue type T in project P

Workaround

Grant the REST API user (e.g. admin) the permission to clone issues in the initial workflow status, by adding this property (keeping the other so that no one else can clone issues):

Key: jira.permission.createclone.user
Value: admin

Then use admin for the REST API call to create issues.

The permission can also be granted to a specific group:

Key: jira.permission.createclone.group.1
Value: jira-administrators

Notes

This ticket supersedes ~~JRASERVER-45995~~, ~~JRASERVER-59487~~, and ~~JRASERVER-62200~~, because incorrect keys are used there:

jira.permission.create.clone
jira.permission.create.clone.denied

When using these incorrect keys, JIRA throws these valid errors:

Unknown type 'clone' in meta attribute 'jira.permission.create.clone'. Valid permission types are defined in permission-types.xml
Unknown type 'clone' in meta attribute 'jira.permission.create.clone.denied'. Valid permission types are defined in permission-types.xml

Using the right keys as mentioned in this ticket:

~~JRASERVER-45995~~ is superseded by this ticket, and the same workaround can be applied
~~JRASERVER-59487~~ and ~~JRASERVER-62200~~ are not valid any more

Attachments

Issue Links

is caused by

JRASERVER-72517 Workflow Permissions around issue creation are not enforced consistently between the UI & REST API

Closed

is related to

JRASERVER-44003 The error returned from create issue REST endpoint when the user doesn't have create permission is bad.

Gathering Impact

JRASERVER-67013 REST API returns 400 error with misleading message when editing issues

Gathering Impact

relates to

JRASERVER-69981 jira.permission.createclone.denied workflow property breakes new createmeta REST API

Closed

PSR-328 Loading...

supersedes

JRASERVER-59487 jira.permission.create.clone.denied in workflow property breaks Get create issue meta API

Closed

JRASERVER-45995 jira.permission.create.clone workflow property denying ability to Create Issues using REST API

Closed

JRASERVER-62200 jira.permission.create.clone not working properly

Closed

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(3 supersedes, 5 mentioned in)

Activity

People

Assignee:: Unassigned

Reporter:: Andy Nguyen (Inactive)

Votes:: 15 Vote for this issue

Watchers:: 27 Start watching this issue

Dates

Created:: 25/Jul/2018 9:14 AM

Updated:: 26/Sep/2023 9:43 PM

Resolved:: 15/Jun/2021 4:46 PM