Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Customer added to one particular project can still see it even after being removed

Lise Wåsjø
Lise Wåsjø
Contributor
February 8, 2023

Hi,

I have a problem where we have several projects in our customer help center, not every customer is supposed to see all projects. We have set the customer access to: "Customers added to this service project only by agents and admins"

Still if you are a customer in one project you have access to all others as well. Even if you are removed as a customer from the one project you still have access. The only way is to remove the users completely from the site.

To hide a project from the help center we've had to remove customer access in the permission scheme, but this obviously makes it impossible for that project to have any customers accessing the project from the portal.

EDIT: after a more thorough search we realised it is only one project where customers still have access even after being removed, they dont have any ticket s in the portel nor are they participant on any issues. 

Answer
Watch
Like Be the first to like this
1265 views

4 answers

2 accepted

2 votes
Answer accepted
Deepak Rai
Deepak Rai
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 8, 2023

The Browse Project permission may make project details visible to all users in directories and while searching Jira

There’s a known issue when granting a User custom field valueReporterCurrent assignee, or Group custom field value the Browse Project permission. In these cases, a project becomes visible to any logged in user on your Jira site.

The issue is caused by an intentional design in Jira’s backed that couples the Browse Project and View issue permissions. We’re currently working to decouple these permissions.

@Lise Wåsjø  could you please check if any User custom field valueReporterCurrent assignee, or Group custom field value added into browse project permission

View More Comments
Lise Wåsjø
Lise Wåsjø
Contributor
February 9, 2023

Yes thats it, thanks!
We do have one user custom field value.

Do you know by when this bug is estimated to be fixed?

Like
Deepak Rai
Deepak Rai
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 16, 2023

@Lise Wåsjø  Currently the bug is "in progress" status, I would like to share here

Bug Fix Policy .

Like Lise Wåsjø likes this
Reply
0 votes
Answer accepted
Jack Brickey
Jack Brickey
Community Champion
February 8, 2023

Hi @Lise Wåsjø , can you check the global settings for customer access. Here is a guide that may help explain the options - how-global-permissions-affect-project-permissions 

View More Comments
Jack Brickey
Jack Brickey
Community Champion
February 8, 2023

Thanks for the update Lise. It would be interesting to see if the customer still sees a project if their user is removed from any Reporter or Participant field.

Like
Lise Wåsjø
Lise Wåsjø
Contributor
February 8, 2023

Our global settings are :


Screenshot (478).png

So basicly we want only those customers or groups to access specific projects based on which they are added to in the projects themselves. they are mostly internal customers

Like
Jack Brickey
Jack Brickey
Community Champion
February 8, 2023

That all looks good. Based upon your earlier finding...

  • new customers added to a specific project only see that specific project
  • if a customer is removed from a project, then they still see that project on the Help Center

is this correct? Assuming so, one theory I have is that if that customer is still assigned as the reporter or a request participant then they may still see the project. I haven't tested this as yet. 

Like
Lise Wåsjø
Lise Wåsjø
Contributor
February 8, 2023

We investigated this even further now and found that it is only in one project in our instance where this happens. We checked the project roles of the individual users and they were not listed as having access to that one project, but they still saw it in the customer portal. 

We've submitted a support ticket to Atlassian since we were unable to replicate this issue for any other project. 

Like
Lise Wåsjø
Lise Wåsjø
Contributor
February 8, 2023

Also they did not have any tickets in the project, nor were they participants

Like
Reply
0 votes
Jack Brickey
Jack Brickey
Community Champion
February 9, 2023

@Deepak Rai , could you please share a JAC link to the known issue?

View More Comments
Deepak Rai
Deepak Rai
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 16, 2023

Hey @Jack Brickey  please find the related JAC 

https://jira.atlassian.com/browse/JRACLOUD-75053

Like Jack Brickey likes this
Reply
0 votes
Lise Wåsjø
Lise Wåsjø
Contributor
February 8, 2023

After some more research I see that the restriction of access to JSM project does work for new projects. The problem arises when a user has been a customer previously but then been removed from  that specific projecct

Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.