Provide the ability to have the ‘Add User’ button removed in Jira so that project-admins cannot just add users to their projects outside of our formal entitlements request process that involves Crowd and other internal tools.

We have been discussing internally our risk item where Jira by default has the ‘add-user’ button which in our case allows project-admins to add users to their project outside of our internal Horizon access request process.

 or review – internally here what we are doing as a ‘compensating control’, is that we are hiding the button and also have a cleanup script that removes permissions that were added directly in Jira outside of the formal request process (permissions in Jira that are not in Crowd).

Our risk team has asked a couple of questions that I need your help with answering which are the following:

1. Do you know the official RFE (request-for-enhancement) ticket for this specific ask from us regarding the Jira add-user button?
2. Can you please open an almost identical RFE ticket for Confluence for removing/disabling the ‘Edit-Permissions’ button in Confluence that provides Space-Owners a similar ability to add permissions outside of our formal Horizon access request process?