Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-36141

"Current Assignee" on Browse Permission creates security hole

XMLWordPrintable

      Adding "Current Assignee" to the Browse permission for a project lets any user of the system see that project (they can't necessarily view issues or create issues, but they can see the project).

            mark@atlassian.com MarkC
            theidenreich Thomas Heidenreich (//S)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved:

                Estimated:
                Original Estimate - 7h
                7h
                Remaining:
                Remaining Estimate - 7h
                7h
                Logged:
                Time Spent - Not Specified
                Not Specified