Ah, right. Well perhaps no then. JIRA doesn't/won't support issue level security which is kind of required for what you describe, as you only get one level of 'BROWSE' see https://jira.atlassian.com/browse/JRA-5865

Whislt JIRA security is done at a project level, to implement what you describe can be done but not for one project. You would need mulitple projects (actually one per domain), then a new feature would be required to MAP inbound user domains to specific projects, which is where I came in with -506. Its possible something could be done with custom fields and group pickers in the permission scheme, in conjunction with -506

That would (when written) allow auto-joining to a group that had permissions in the target project. ie, you have to do project setup per domain supported. Of course this can get more complex with automated project creation and so on, but one step at a time.

Features such as this could be implemented after JEMH 1.0, for this expanded case I created https://studio.plugins.atlassian.com/browse/JEMH-510

Im curious so may test out the CF theory.

Ok but there "will" need to be multiple domains users from "multiple domains", only thing I need to do is insure domain users see only tickets from there domain. Are we still on the same page ?

mmm.. i don't think i understand why i need to do that ?

i just want to make sure @domain.com">*@domain.com can see each others tickets but not tickets from *@otherdomain.com

I think we are on the same page, so long as auto-created users (whitelisted @domain.com) are joined to KEY-users. users from @otherdomain fail with whitelist for user creation and wont be able to log in. Comments above regarding permission scheme changes still hold.

Sounds like the project permission scheme needs changing, removing just the 'reporter' for BROWSE and adding the JEMH auto-join group in its place?

Re #4, I've only created one project that will be used for the helpdesk/support ticketing system. Currently all automatically created users only see there own tickets I take it then by your answer that #4 is possible ? (just hoping for further clarification)

Hello,

#1 Yes, clients email a mailbox that JEMH can pickup from via JIRA Mail Services

#2 Yes, you can configure JEMH to do this using a couple of strategies for picking a username, including ldap lookup

#3 Yes, you can configure an approprate regexp for createUsersIDFromEmailDomainWhitelist

#4 Kinda. If you have a single domain, you can nominate a group eg KEY-users, if you grant that group via console 'right to use' then they will be able to log in. If you also allocate that group in the project roles, they will be able to see the project, which is what you desribe.

Mulitple projects is a different ballgame, selectin an auto-join group based on the project key, eg KEY-users, is possible but not written, logged as https://studio.plugins.atlassian.com/browse/JEMH-506

Rgds