Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-36141

"Current Assignee" on Browse Permission creates security hole

XMLWordPrintable

      Adding "Current Assignee" to the Browse permission for a project lets any user of the system see that project (they can't necessarily view issues or create issues, but they can see the project).

              mark@atlassian.com MarkC
              theidenreich Thomas Heidenreich (//S)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Estimated:
                  Original Estimate - 7h
                  7h
                  Remaining:
                  Remaining Estimate - 7h
                  7h
                  Logged:
                  Time Spent - Not Specified
                  Not Specified