Get started with Jira
New to Jira? Check out our guides for new administrators and users.
You won't want every user in your team to have the same level of access to Jira Work Management. For example, you may want to restrict who can administer Jira Work Management, or prevent users from viewing a project. In this step, you will learn about the different permissions in Jira Work Management and set permissions for a new project.
This page is for getting started with company-managed (previously known as "classic") projects. If you're working in a team-managed (previously known as "next-gen") project, check out Manage how people access your team-managed project.
A role is a project-specific set of groups and/or individual users. In our example of the design project in the t-shirt business, all product managers need to be able to assign work (issues) across all projects, while senior designers need to be able to assign work on specific design projects. In Jira Work Management, you can define a product manager role that includes all product managers. You can then define a set of permissions with the "Assign issue" permission for this role, and apply this set of permissions to all projects. Individual senior designers can be added to the product manager role on each project, as needed.
Global permissions cover a small set of functions that affect all projects in Jira Work Management (for example, permission to administer Jira Work Management). They can only be assigned to groups:
Project permissions cover a set of more granular functions that affect a single project. For example, permission to create issues in a project can be assigned to groups, users, and project-specific roles.
Now let's put this into practice! You're going to go through the tasks involved to use project permissions to hide a new, secret t-shirt design project from some of your users.
This project role will only contain users that you want to view a particular project. We will assign permissions to this role in the next step.
Choose Settings ().
Select System, then Project roles in the security section.
Add another project role named "Review".
Leave the Description field blank for now and select Add project role.
Select Manage Default Members.
Select Edit under Default Users and add yourself and Jason to the Review project role (don't add Kate or Emma).
The Browse Projects permission controls whether a user can browse a project, i.e. whether they can view the project. Let's assign this permission to your new project role.
Choose Settings ().
Choose Issues > Permission schemes.
Copy the Default Permission Scheme.
Edit the copied permission scheme and change the name to "Confidential Permission Scheme".
Click Update.
Select Permissions for the Confidential Permission Scheme.
Remove browse permission for anyone who can log in:
Click Remove to the right of "Browse Projects"
Check "Application access - Any logged in user"
Click Remove
Grant browse permission to our "Review" project role:
Click Edit to the right of "Browse Projects"
Select Project Role and Choose "Review" from the menu
Click Grant
For the last step, let's associate the permission scheme with a new project.
Choose Projects and select a project, or choose View all projects to visit the projects directory.
Select Create project.
Choose the project type "Task tracking".
Name the project Top Secret Tee and Create.
Select Permissions > Actions > Use a different scheme.
Set the Scheme to Confidential Permission Scheme and select Associate.
The only users that will be able to browse your new project are Jason and yourself. Note that default members are only added to a role for new projects. You can also use this approach to restrict users from creating issues, adding comments, closing issues, and more.
Was this helpful?