Uploaded image for project: 'Jira Align'
  1. Jira Align
  2. JIRAALIGN-674

Adding Epic to theme allows users that don't have access to the associated programs add Epics to theme

XMLWordPrintable

    • Severity 3 - Minor
    • Hide
      Preconditions:
      The user is only assigned to one program, but was previously assigned to both and then removed from one of those programs.



      1. Both programs are tied to the theme

      2. User that is only assigned to one of the two programs opens the theme slide out

      3. Then the user clicks add Epic to theme

      4. This action will give the user permission to create an Epic for both programs vs just the program they are assigned to

      5. This is causing Epics to be created under programs users don't have access to by accident then they can't find the Epic in their Epic Grid view

      Show
      Preconditions: The user is only assigned to one program, but was previously assigned to both and then removed from one of those programs. 1. Both programs are tied to the theme 2. User that is only assigned to one of the two programs opens the theme slide out 3. Then the user clicks add Epic to theme 4. This action will give the user permission to create an Epic for both programs vs just the program they are assigned to 5. This is causing Epics to be created under programs users don't have access to by accident then they can't find the Epic in their Epic Grid view
    • Users should only have access to create Epics for programs they have been associated with.
    • Users are creating Epics for programs that they shouldn't have access to.
    • No

      STR:
      There should be 2 programs in the system.
      1. Both programs are tied to the theme
      2. The user that is only assigned to one of the two programs opens the theme slide out
      3. Then the user clicks add Epic to theme 
      4. This action will give the user permission to create an Epic for both programs vs just the program they are assigned to 

      ER: Users should only have access to create Epics for programs they have been associated with.

      AR: User are creating Epics for programs that they shouldn't have access to.

              Unassigned Unassigned
              ddortch@atlassian.com Darryl Dortch (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: