That is just it... the user is part of no projects, and is part of a group who who's only purpose was to literally give access to the software under applications... is there some universal setting for all users being able to see all projects?

I should note that this group is given no permissions in global permissions as well

I stared from scratch and I:

Created a a user, "Test User" and associated with ONE Group, "Test Group".

The ONLY thing I have done with the Group "Test Group" is to allow members of that group to access the software via application access. 

Then, I went to the permission scheme of a project, added Test User to the role of CLIENT. 

Then, I added the role of CLIENT to comment on issues. That is all. 

When I logged in as Test User, I did not see the project's dropdown on the blue bar, so I could not access the project. However, I COULD use the administrator cog, and click on "projects" there. and see a list of all projects. 

When I went back in as an admin, I added CLIENT to be able to browse projects. 

This allowed the Test User to use find the correct project on the blue bar as I want them to do. And, of course, they could STILL use the cog to see all projects. 

So...

1) What specific access gives one the ability to see "projects" when clicking on the administration cog?

2) Within a specific project, does the permission of "browse projects" give the permission to see all projects? If so, what specific permission allows one to only see one project? 

Thank you in advance for your help. 

Okay, 

For your user to see projects you want them to see you need to add them browse permission on those projects.

I just created a test account, and all I did is checked Jira Software User no roles no group no nothing, and he can't see the administrator cog.

Administrator permission is hidden somewhere, maybe some role or something.

Try this create a new user via user management check Jira Software User and don't add him anyway don't give him any project roles, log in with that user and check if the cog is there. Use two different browsers so you can multitask one with your admin acc and other with your test account.

Thank you so much for your time! I will give it a go. 

When I do as  you suggest... as soon as I manually click the "JIra Software user" The group of "jira software user" is automatically applied to my user. The user can still see the cog and can still see "projects" therein. So, I once again removed that group and added the group which I created. This way I know this group is not added in any capacity to any permission scheme. Still no go. I have also looked at global permissions, but nothing there seems to give any permissions in this regard. 

Hello Linck,

Same/similar thing is descused here, might wanna check, when I do same as you do I don’t see the cog wired I’ll look into it 

https://community.atlassian.com/t5/Jira-questions/External-client-can-see-4-out-of-my-15-projects-help/qaq-p/954745#M306392

Ill check out that thread. Again, thank you so much for taking the time to try to help! If I find the answer, Ill post back here so you will know. Have a great day!

I figured it out!!! So, in our default permissions scheme "reporter" was allowed to have admin rights. I removed that, and bingo! Reporter is not a group, it is not a role, it is whomever creates an issue! 

Again, thank you for taking time to help!