Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Making sure that users who don't have jira permission don't show up in jira when using Crowd

Peter Van de Voorde
Peter Van de Voorde
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
July 11, 2013

Hi All,

I currently have a Jira and Confluence instance running who both use Crowd for SSO and authentication.

In Jira I have 2 user directories, Crowd and the Jira Internal one. This last one is used to automatically create users from emails send through JEMH to Jira. These users have create issue rights but can't login into Jira. Crowd is used for all other access.

I now have the following problem : I have a user who's in both Crowd and the internal Jira user directory (he did send an email to create an issue, so his account got automatically created), but who isn't in any jira groups in Crowd (he's a confluence user). If now tries to create a new issue by email he get's a permission error because his crowd user doesn't have issue create permissions in Jira.

I know I can solve this by simply rearranging the user directories in Jira but I wanted to know if there is a way to limit the users that Jira selects in crowd to only those that are actually in groups being used by Jira?

I'm using Jira 6.0.3 and Crowd 2.5.1

Best regards,

Peter

Answer
Watch
Like Charlie Misonne likes this
421 views

2 answers

1 accepted

3 votes
Answer accepted
Jobin Kuruvilla [Adaptavist]
Jobin Kuruvilla [Adaptavist]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 12, 2013

In Crowd, you can define which groups are visible in JIRA. Go to Applications, select JIRA and define the groups under Groups. Make sure 'Allow All to authenticate' is false under directories.

View More Comments
Peter Van de Voorde
Peter Van de Voorde
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
August 4, 2013

Hi Jobin, thanks for you answer.

I just got back to my customer with this problem today.

The Jira application user in Crowd is configured as you explained and the user I mentioned is indeed unable to access Jira but I can still find him in the User Management screen in the Jira Administration section. And that's the behaviour I would like to remove, so that the only users that can be searched in Jira are those with actual Jira permissions.

Best regards,

Peter

Like
Reply
0 votes
Peter Van de Voorde
Peter Van de Voorde
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
August 5, 2013

It seems that my request is currently not possible, you can't currently excluded certain groups from a user directory in Jira, even when these groups don't have any rights in Jira.

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events