Details
-
Suggestion
-
Resolution: Timed out
-
None
-
None
Description
Problem Definition
Currently, if we associate an Atlassian Cloud site with a Google Apps domain and include Service Desk customers with 'portal only' access, these users are given default access to the application and can no longer be changed into 'portal only' users.
This may cause important issues if this is done inadvertently by the user, such as:
- Giving these users access to content they should not have access to (so a security breach)
- Updating license, requiring customer to pay for a license.
- A lot of extra work to manually undo all the changes
- If the users are then removed from synchronization, by removing them from synched groups, this may remove all the users from their instance, causing further problems
Suggested Solution
There are a number of possible solutions:
- Never sync SD users
- Sync them and keep them as portal only
- Give the administrator and option to either sync those users or not or an option to either raise their application access or not
- At least, show a warning that users will be given access to JIRA and which of them will
Attachments
Issue Links
- is related to
-
ID-6508 Ability to Sync Users as Customers
- Closed
- relates to
-
JSDCLOUD-1964 Allow Portal-only Service Desk Customers Login with Google
- Gathering Interest
-
JSDSERVER-1964 Allow Service Desk Customers Login with Google Apps
- Gathering Interest