@Linck Schlich - Also check your default permission scheme (or any permission scheme used by the projects visible to any new users).

What's under the Browse permission? If it's jira-software-users that would be the reason they would see all projects.

Regards,

Gary

Interestingly, there is no role of "user". As far as I can tell, the only group my TEST user is a part of is "jira-software-users" and that group. And that group seems to have no attributes:

In the default permission scheme, that group is not listed for anything. 

I also checked global permissions, and that group is not listed there for anything.

I am stuck. Again, thank you for your time.  

Can you provide a schreenshot of your project permission scheme please

Meaning the default project Scheme? The test user is not associated with any project or group. 

Other than the"jira-software-users", and above, that group has no permission scheme associated with it. 

I am wondering if I should add a permissions scheme to that user group, but I am a little confused. Is a permission scheme associated to a user group or to a project?

The permission scheme is associated to your project. So you need to look at it and find what permission have your user.

They thing is... the user is not associated with a project 

Now, there is a default project scheme for projects, but not one for user groups

please look at the permission scheme associated to your project you will find why the user can access to it.

provide a screenshot of the permission scheme of the project please even if the user is not in this project

There are nearly a hundred projects. The user is associated with none of them. 

are these project have the same permission scheme ?

No, there are various project schemes... I suppose the question is... if there is a user that is not associated with a project, what determines that user's permissions?

If in you permission scheme you set any logged user, so everyone can access to this project. Or the users is an admin or is in a particular project role that allow him to access to all projects

ok, thank you. That gives me something to research... thank you so much for your time. Ill come back once I have check the projects. 

I am coming back around to this. I am still at a loss. Here is what I have:

A user, "Test User", is associated with one Group, "Test Group"

The ONLY thing I have done with the Group "Test Group" is to allow members of that group to access the software via application access. 

Then, I went to the permission scheme of a project, added Test User to the role of CLIENT. 

Then, I added the role of CLIENT to comment on issues. That is all. 

When I logged in as Test User, I did not see the project's dropdown on the blue bar, so I could not access the project. However, I COULD use the administrator cog, and click on "projects" there. and see a list of all projects. 

When I went back in as an admin, I added CLIENT to be able to browse projects. 

This allowed the Test User to use find the correct project on the blue bar as I want them to do. And, of course, they could STILL use the cog to see all projects. 

So...

1) What specific access gives one the ability to see "projects" when clicking on the administration cog?

2) Within a specific project, does the permission of "browse projects" give the permission to see all projects? If so, what specific permission allows one to only see one project? 

Thank you in advance for your help. 

Thank you for your time! My test user is only in the jira-software-users group. There are no Permissions Schemes associated with this group.