Uploaded image for project: 'Atlassian Guard'
  1. Atlassian Guard
  2. ACCESS-1114

Add org-level audit log for when a user from an allowed-domain performs self sign up

XMLWordPrintable

    • 77
    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Problem definition

      Organization Audit logs (Atlassian Access) are missing several events related to site access and self signup: 

      • Self sign up: When a user performs self sign up where the email address is one of the allowed domain.
      • When a site administrator toggles the New users have access to this product button on the Product access page (https://admin.atlassian.com/s/SITEIDHERE/apps) this information is not sent to the organization audit log.
      • When a site admin approves an access request: Users can request product access for themselves or others when the site access settings don’t allow them to join the site

      Suggested solution

      • Add above events to the audit log

      Update 28 February 2023
      I'd like to provide updates on the three issues raised in the original post of this ticket.

      Self sign up: When a user performs self sign up where the email address is one of the allowed domain.

      While this log is still missing from the org-level audit log, org admins can elect to get email notifications when a user from an approved domain gets access:

      When a site administrator toggles the New users have access to this product button on the Product access page (https://admin.atlassian.com/s/SITEIDHERE/apps) this information is not sent to the organization audit log.

      This toggle no longer exists as per the changes discussed here: Control how users get access to products. The toggle has been replaced by the org-level User access settings (https://admin.atlassian.com/o/<Org ID>/user-access-settings). When a change is made to these settings, it is reflected in the org-level audit logs:

      When a site admin approves an access request: Users can request product access for themselves or others when the site access settings don’t allow them to join the site

      This log now exists:

      With the above in mind, I am changing the title of this issue to reflect the remaining request, "Add audit log for when a user from an allowed-domain performs self sign up"

        1. screenshot-1.png
          screenshot-1.png
          176 kB
        2. screenshot-2.png
          screenshot-2.png
          282 kB
        3. image-2023-02-28-11-23-08-609.png
          image-2023-02-28-11-23-08-609.png
          310 kB

              jyu@atlassian.com Jonathon Yu
              aaloysius Augustine Aloysius (Inactive)
              Votes:
              21 Vote for this issue
              Watchers:
              33 Start watching this issue

                Created:
                Updated: