A support customer is using our SOAP API to talk to JIRA and integrate it with another tool. He is effectively reproducing the basic JIRA functions - create an issue, assign an issue, update an issue, and progress workflow on an issue - in that system. His system is for normal JIRA users - they do not need Administrator privilege to use it.

However in order to do this he needs to be able to find out information such as the possible assignees for an issue (and other information). In JIRA this information is available if you have Browse Issue permission. However, in the absence of a more targetted method such as getPossibleAssigneesForIssue(), which would only require Browse Issue permission, he has to instead use getPermissionScheme() and then search the mappings to find out who has the Assignable User permission in that permission scheme for that project.

However getPermissionScheme() requires Administer Projects permission. The users of his application will not have this permission, nor should they need it as they are only carrying out functions that are available with only Browse Issue and in some cases Create Issue permission.

We need some more targetted methods so that he does not have to go via methods that require Administer Projects permission in order to carry out operations that only require a lower security level.

See the support issue for details of which methods.

Kind regards,
Ian