Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to allow read access to project roles ?

Moosh
Moosh December 30, 2019

I want to allow some roles in project to have a read only access to role/Right Matrix

( https://myhost//plugins/servlet/project-config/MYPROJECT/roles )

EDIT :  
I don't want to give read-only access to the project.
(I already do that, I have an "Observer" role)

I want to give read-only access to "who has what role in this project".

Or more simply "who is admin of this project? Who is user? Who is developer? Who is …"

Answer
Watch
Like Minh Tran likes this
1090 views

3 answers

0 votes
Moosh
Moosh July 12, 2021

Finnaly my Home made solution is an periodic export of SQL statement result on Jira DB.

SELECT
categorie.cname "Catégorie",
projet.pkey "Code projet" ,
projet.pname "Nom du projet",
CASE 
WHEN upper(categorie.cname) Like 'Z -%' or upper(categorie.cname) Like 'Z-%' 
THEN 'Catégorie archivée'
WHEN upper(projet.pname) Like 'Z -%' or upper(projet.pname) Like 'Z-%' 
THEN 'Projet archivé' 
ELSE 'Active'
END as "Statut",
role_user.name "Rôle de l'utilisateur",
utilisateur.display_name "Nom de l'utilisateur",
utilisateur.email_address "Email du membre",
projet.lead "Responsable du projet"
FROM 
jira8.project projet
INNER JOIN jira8.projectroleactor pra_user 
ON pra_user.pid = projet.id
AND pra_user.roletype = 'atlassian-user-role-actor'

INNER JOIN jira8.cwd_user utilisateur
ON pra_user.roletypeparameter = utilisateur.user_name

LEFT JOIN JIRA8.projectrole role_user
ON pra_user.projectroleid = role_user.id

INNER JOIN jira8.nodeassociation nodecat 
ON nodecat.sink_node_entity = 'ProjectCategory'
AND nodecat.association_type = 'ProjectCategory'
AND nodecat.source_node_id = projet.id

INNER JOIN jira8.projectcategory categorie 
ON categorie.id = nodecat.sink_node_id 
WHERE utilisateur.active = 1
Reply
0 votes
Deleted user December 30, 2019

It can be achieved with the help of your JIRA Administrator (Global permission) in 2 steps

1) Create a role called "Ready-Only"
https://confluence.atlassian.com/display/JIRA052/Managing+Project+Roles#ManagingProjectRoles-Viewingprojectroles

2) Add this role in all permission schemes with : Browse Projects permission only 

https://confluence.atlassian.com/display/JIRA052/Managing+Project+Permissions#ManagingProjectPermissions-CreatingaPermissionScheme

ref: Adding Users, Groups or Roles to a Permission Scheme

Now, Any of the project Administrators can use this role for giving read-only access in the respective project,

View More Comments
Moosh
Moosh December 30, 2019

sorry,  I've edit my question to be more clear.

I don't want to give read-only access to the project.
(I already do that, I have an "Observer" role)

I want to give read-only access to "who has what role in this project".

Or more simply "who is admin of this project? Who is user? Who is developer? Who is …"

Like
Deleted user December 30, 2019

I don’t think, there is any way in JIRA to know this, as Users and Roles option comes under Administrator permission,

If you have 100s of people in a project ,this will become a maintenance nightmare in JIRA

If you are using Crowd (for User management) and Confluence ( for Collaboration), I can suggest a simple workaround

1) Create Crowd user Group for each role in a project

  1. <Category>_<PROJECT>_<Role>

        XYZ_PROJ1_Admins, XYZ_PROJ1_Devlopers ,XYZ_PROJ1_Observer etc

2) Add that respective groups in respective role of the JIRA project(s).

3) Create a Confluence page in public space which has read access to all &  Insert ‘User List’ Macro to publish the members in all the groups in tabular format against project name/key.

Above steps are one time activity whenever new project is created.

Whenever required, you have to add/remove users via Crowd, not via JIRA

PROS: The data will be live based on the user directory sync interval.

Same group can be applied for multiple projects.. so that any new person joined/left, you do not need to go to every project and add/remove them one by one.

You can simply add/remove the respective group from the users in crowd in a single window.

Like
Reply
0 votes
Jack Brickey
Jack Brickey
Community Champion
December 30, 2019

Permissions are controlled under project settings / permissions. Read only would be Browse and ensure the user isn’t in a role/group that has any edit function abilities.

View More Comments
Moosh
Moosh December 30, 2019

Permissions are controlled under project settings / permissions

 

Yes, with an url like https://myhost/plugins/servlet/project-config/MYPROJECT/roles

I can access as admin but I want  give an readonly access to THIS PAGE for members of MYPROJECT.

Currently In found only how to provide an editor access.

Like
Moosh
Moosh December 30, 2019

In fact, the  minimal version of my need is.

How, as simple user member of a project, I can know found name of ADMINSITRATORS (not RESPONSABLE) of the current project.

Like
Jack Brickey
Jack Brickey
Community Champion
December 30, 2019

Sorry i'm not following. I don't understand your URL or what "THIS PAGE" means where Jira is concerned. I thought you were asking how to provide read only access to Jira issues in a given project but it seems maybe you are looking for something else?  Maybe this is associated w/ some addon??

Like
Moosh
Moosh December 30, 2019

"THIS PAGE" means the page  project-config/MYPROJECT/roles
The page where a project admin can edit the  settings / permissions of his project.

I would like give read access to some other users of the project.

---

To explain the full story.

I'm Jira Adminstrator
My Jira instance host hundreds of projects and I would like that for the administration of roles in the projects, the members of the projects make their request directly to the administrators of the projects and not to me.

Like
Jack Brickey
Jack Brickey
Community Champion
December 30, 2019

ok, so that is a different matter altogether. :-)

interesting idea and I would certainly vote for such a feature. AFAIK there is no way of achieving that today but that doesn't mean there isn't a way just that I would be surprised.

Like Moosh likes this
Moosh
Moosh December 30, 2019

and where is the best place to write a suggestion/proposal ? (and give help to be reviewed, since obviously I cannot be understood the first time :) :) )

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.