Uploaded image for project: 'Jira Software Cloud'
  1. Jira Software Cloud
  2. JSWCLOUD-19238

Non-admin User Should not be able to see all users/groups in drop down

    XMLWordPrintable

Details

    Description

      NOTE: This bug report is for JIRA Portfolio Cloud. Using JIRA Portfolio Server? See the corresponding bug report.

      Summary

      In Plan configuration > Permissions > Plan access. Non-admin users can try to add Viewers and see all users/groups on the instance.

      Steps to Reproduce

      1. Login as non-admin user
      2. Create a plan
      3. Go to Plan configuration > permission
      4. Try add users or groups

      Expected Results

      • Only groups that the user are belong to should be listed
      • Only users that has "Browse Users" in Global Permission should be able to list all users

      Actual Results

      All users and groups are listed (max 50 on drop down)

      Workaround

      None

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. JPOSERVER-1781 Non-admin User Should not be able to see all users/groups in drop down

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              akavelar Albert Kavelar
              znoorsazali Zul NS [Atlassian]
              Votes:
              2 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: