Default application access is not respected when creating user with REST API

XMLWordPrintable

    • 19
    • Severity 3 - Minor
    • 1

      When creating a user using REST (POST /rest/api/2/user/application) the application is set to "JIRA Software", while the default application access is configured as "None".

      A workaround is not available, because the field "applicationKeys" is not allowed on cloud (Error message: "Application access permissions cannot be modified via REST in Cloud."). Also the /rest/api/2/user/application API delete function does not work and results in a http 405 error.

      Update: This is affecting POST /rest/api/3/user too. Newly created users will be added into Default Access Group regardless of disabling New users have access to this product under product access user administration page.

        1. image-2016-02-16-11-22-25-897.png
          image-2016-02-16-11-22-25-897.png
          11 kB
        2. image-2016-02-16-11-21-44-209.png
          image-2016-02-16-11-21-44-209.png
          17 kB

            Assignee:
            Sherif Gamal (Inactive)
            Reporter:
            Marijn Otte
            Votes:
            26 Vote for this issue
            Watchers:
            35 Start watching this issue

              Created:
              Updated:
              Resolved: