• Type: Suggestion
• Resolution: Unresolved
• Component/s: Forge - Jira page modules
• Labels:

  • ecohelp

[ECO-571] Allow users added as Request Participants to view and interact with forge apps even when Restrictions are enabled for a specific request type.

Sherica Ocbania made changes - 16/Mar/2025 11:43 PM

Component/s	Original: [DO NOT USE] Forge - JSM Modules [ 77694 ]
Component/s		New: Forge - Jira page modules [ 73726 ]

Tasha made changes - 14/Mar/2025 8:54 PM

Remote Link

New: This issue links to "DD-21191 (Jira)" [ 997145 ]

Collapse comment: Caelor Support added a comment - 14/Mar/2025 1:26 PM

Caelor Support added a comment - 14/Mar/2025 1:26 PM

A few of our apps that have JSM features are affected by it; at least one customer reports that it's important to them.

I can confirm the problem persists when the steps to reproduce are followed:

User added as participant to a ticket - a ticket of a request type with restrictions that do not include them - can view the ticket just fine, but not have the Forge apps load for them

There is a request in the network tab that fails that might be a limiting factor:

Expand comment: Caelor Support added a comment - 14/Mar/2025 1:26 PM

Caelor Support added a comment - 14/Mar/2025 1:26 PM A few of our apps that have JSM features are affected by it; at least one customer reports that it's important to them. I can confirm the problem persists when the steps to reproduce are followed: User added as participant to a ticket - a ticket of a request type with restrictions that do not include them - can view the ticket just fine, but not have the Forge apps load for them There is a request in the network tab that fails that might be a limiting factor:

Joe Clark made changes - 23/Dec/2024 3:01 AM

Component/s	Original: Forge - Jira permission extensions [ 73730 ]
Component/s	Original: Forge - Function invocation [ 72111 ]
Component/s		New: Forge - JSM Modules [ 77694 ]

Sherica Ocbania made changes - 09/Dec/2024 2:52 AM

Description

Original: On JSM, when a participant has access to a request (added as a Request Participant) but not to the Request Type, Jira blocks all requests to the backend causing Forge apps to not load at all and giving the following error: {{403 error The user does not have the correct application access required for this resource}}

New: On JSM, when a participant has access to a request (added as a Request Participant) but not to the Request Type, Jira blocks all requests to the backend causing Forge apps to not load at all and giving the following error: {{403 error The user does not have the correct application access required for this resource}} h3. Steps to reproduce:  # Ensure that *Restrictions* are enabled for a specific {*}Request Type{*}.  # Add *User X* and *Forge App User* to the *Restrictions* for that {*}Request Type{*}.  # Add a user who is not included in the *Restrictions* (User Y) to the ticket so they have access to the request. (Request Participant)  # *User Y* can interact with the ticket, but for some reason, the *Actions* panel does not appear for them.

Sherica Ocbania made changes - 09/Dec/2024 2:50 AM

Summary

Original: Allow users added as Request Participants to view and interact with the forge apps even when Restrictions are enabled for a specific request type.

New: Allow users added as Request Participants to view and interact with forge apps even when Restrictions are enabled for a specific request type.

Sherica Ocbania made changes - 09/Dec/2024 2:50 AM

Labels

New: ecohelp

Sherica Ocbania created issue - 09/Dec/2024 2:49 AM