Uploaded image for project: 'Jira Cloud'
  1. Jira Cloud
  2. JRACLOUD-41493

Some screens are visible to anonymous users

XMLWordPrintable

    • 1
    • 9

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion.

      It is the case with all Cloud instances that some screens can be displayed without logging in (if someone knows the instance address). They don't expose much information, but still, the company logo (if added) is there, as well as the fact that JIRA Agile is active:

      • https://<instance>/secure/RapidStart.jspa
      • https://<instance>/secure/Dashboard.jspa
      • https://<instance>/secure/ManageFilters.jspa

      Privacy-wise, it would be better if any anonymous user that shouldn't have access to the instance was automatically redirected to the login page upon attempting to open the above screens.

            Unassigned Unassigned
            dwierzbicka Dobroslawa Wierzbicka (Inactive)
            Votes:
            5 Vote for this issue
            Watchers:
            10 Start watching this issue

              Created:
              Updated: