Uploaded image for project: 'FishEye'
  1. FishEye
  2. FE-1883

Option to disable the people tab for security reasons

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      Problem Description

      1. People page is listing out all users in the FishEye/Crucible instance without permission settings. Anybody can view any others 'easily', this create a privacy issue. E.g. a user's activity shall be visible to his/her project teammates.

      Further information from forums

      The "People" button in Fisheye 2.0 has brought up privacy and security concerns.

      Is it possible to make the People button ether part of a permission scheme, a plug-in that can be disabled, or hack it so that only people "you relate to" are displayed.

      The concern is if User A in project 1 knows knows User B is a specialist in Function X, then watching that user will show User A all the spots where Function X is being deployed.

      This information could open up cases of increased risk to insider trading etc.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CRUC-2368 People tab can be extremely slow when you have a large number of users

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              rchee Ryan Chee [Atlassian]
              Votes:
              6 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: