Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-8615

Granting User Custom Field "Create" or "Administer" permission grants it to everyone

    XMLWordPrintable

Details

    • Bug
    • Resolution: Won't Fix
    • Medium
    • None
    • 3.4
    • Issue - Fields

    Description

      3.4 introduces the ability to grant permissions to a User custom field, allowing individual users to be granted permissions on a per-issue basis.

      This makes sense for most permissions (Browse, edit etc) but not for permissions that aren't issue-specific, ie. "Create Issue" and "Administer Project". Granting those permissions to a User custom field currently has the effect of granting 'jira-users' that permission, ie. everyone logged in can create/administer the project.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-8941 User Picker custom field used in Security Level makes issues invisible to searchers

          • Medium - Medium priority issues
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-8942 Granting User Custom Field "Browse" permission has no effect

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              dylan@atlassian.com Dylan Etkin [Atlassian]
              7ee5c68a815f Jeff Turner
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: