Details
-
Suggestion
-
Resolution: Won't Fix
Description
Currently, Service desk agents are able to share issues with any customer of a project with no indication that they are violating the customer permissions setting.
For example, if the permissions are set to only allow customer to share issues with other customers in their JSD Organization, an agent can still add users outside of that organization to the request participants field.
In addtion, there is no indication of which organization that a user belongs to in the picker, so it can be difficult to notice if one is violating this setting on accident.
As such, I would like to propose the following enhancements for your consideration:
- allow admins to limit the valid request participants of an issue based on the customer setting (plus agents)
- Allow users the ability to specify the organization in their search/autocomplete to limit results to only members of the organization.