-
Suggestion
-
Resolution: Fixed
NOTE: This suggestion is for JIRA Server. Using JIRA Cloud? See the corresponding suggestion.
Didn't log this as a bug, but some might consider it as such. We gave some external users read-only perms to our JIRA (like jira-users). Discovered shortly thereafter that they were able to transition issues through their workflows. After going through the docs, we began to worry that the only way to prevent this was to put conditions on all of the workflow steps (we have quite a few custom workflows). We confirmed this after talking to support.
This is onerous in our particular case, as we now need to go thru the process of manually updating all of our workflows to preclude this from happening. However, we think it illustrates an omission in the permission model. We understand that from a technical perspective workflows are managed separately via OSWorkflow. However, from a user/admin use case standpoint. A 'read-only' issue should be just that and there should be a more global way to enforce this (i.e. a "Transition Issues" permission), as saying that 'read-only' users can't do this on every transition step is redundant. The workflow conditions are more appropriate for 'fine-grained' checks like only 'testing' can move through this particular transition.
- causes
-
- Closed
- is duplicated by
-
- Closed
-
- Closed
- is related to
-
- Closed
- relates to
-
- Closed
-
- Closed
-
- Closed
- is cloned by
-
JDEV-27590 Loading...
[JRASERVER-11564] Need a "Transition Issue" permission
| Remote Link | Original: This issue links to "Page (Atlassian Documentation)" [ 121547 ] |
| Workflow | Original: JAC Suggestion Workflow [ 3056173 ] | New: JAC Suggestion Workflow 3 [ 3685278 ] |
| Status | Original: RESOLVED [ 5 ] | New: Closed [ 6 ] |
| Workflow | Original: Confluence Workflow - Public Facing v4 [ 2603343 ] | New: JAC Suggestion Workflow [ 3056173 ] |
| Workflow | Original: JIRA PM Feature Request Workflow v2 - TEMP [ 2591575 ] | New: Confluence Workflow - Public Facing v4 [ 2603343 ] |
| Status | Original: Closed [ 6 ] | New: Resolved [ 5 ] |
| Workflow | Original: JIRA Bug Workflow w Kanban v6 - TEMP [ 2361421 ] | New: JIRA PM Feature Request Workflow v2 - TEMP [ 2591575 ] |
| Workflow | Original: JIRA Bug Workflow w Kanban v6 [ 2128999 ] | New: JIRA Bug Workflow w Kanban v6 - TEMP [ 2361421 ] |
| Workflow | Original: JIRA Bug Workflow w Kanban v6 - TEMP [ 2091972 ] | New: JIRA Bug Workflow w Kanban v6 [ 2128999 ] |
| Workflow | Original: JIRA Bug Workflow w Kanban v6 [ 889192 ] | New: JIRA Bug Workflow w Kanban v6 - TEMP [ 2091972 ] |
| Description |
Original:
Didn't log this as a bug, but some might consider it as such. We gave some external users read-only perms to our JIRA (like jira-users). Discovered shortly thereafter that they were able to transition issues through their workflows. After going through the docs, we began to worry that the only way to prevent this was to put conditions on all of the workflow steps (we have quite a few custom workflows). We confirmed this after talking to support.
This is onerous in our particular case, as we now need to go thru the process of manually updating all of our workflows to preclude this from happening. However, we think it illustrates an omission in the permission model. We understand that from a technical perspective workflows are managed separately via OSWorkflow. However, from a user/admin use case standpoint. A 'read-only' issue should be just that and there should be a more global way to enforce this (i.e. a "Transition Issues" permission), as saying that 'read-only' users can't do this on every transition step is redundant. The workflow conditions are more appropriate for 'fine-grained' checks like only 'testing' can move through this particular transition. |
New:
{panel:bgColor=#e7f4fa} *NOTE:* This suggestion is for *JIRA Server*. Using *JIRA Cloud*? [See the corresponding suggestion|http://jira.atlassian.com/browse/JRACLOUD-11564]. {panel} Didn't log this as a bug, but some might consider it as such. We gave some external users read-only perms to our JIRA (like jira-users). Discovered shortly thereafter that they were able to transition issues through their workflows. After going through the docs, we began to worry that the only way to prevent this was to put conditions on all of the workflow steps (we have quite a few custom workflows). We confirmed this after talking to support. This is onerous in our particular case, as we now need to go thru the process of manually updating all of our workflows to preclude this from happening. However, we think it illustrates an omission in the permission model. We understand that from a technical perspective workflows are managed separately via OSWorkflow. However, from a user/admin use case standpoint. A 'read-only' issue should be just that and there should be a more global way to enforce this (i.e. a "Transition Issues" permission), as saying that 'read-only' users can't do this on every transition step is redundant. The workflow conditions are more appropriate for 'fine-grained' checks like only 'testing' can move through this particular transition. |
| Link |
New:
This issue relates to |
