SECURE ADMIN for Jira Server
This plugin allows you to restrict access to the five administration tabs: Projects, Issues, User Management, System and Add-ons. This allows you to share the administration tasks. such as user management, to other users reducing your workload, allowing for quick turn around time and scalability. Even though more users have access to the administration area access to sensitive areas can be restricted to particular users.
When a user attempts to access a tab that they don't have access to a message is displayed telling them that access is denied.
By default, the Secure Admin plugin allows the same access level to the administration tabs as normally applies. Restriction of access is done by specifying which users have access to particular tabs. Below is the Secure Admin configuration screen that specifies access. This is located on the Add-ons tab.
Initially, all fields are blank. A blank access field means that there is no restriction on access, anyone who normally has access to the admin tabs has access to tabs with no users specified in this field.
By specifying users in the access fields you restrict all access to only the users specified. For example in the screenshot above:
Only Paul Clark and Joe Bloggs have access to the Applications and User Management tabs
Everyone (with admin access) has access to the Projects tab
Only Paul Clark and Chad Vader have access to the Issues tab
Only Paul Clark has access to the System and Add-ons tabs
Anyone that has access to the Add-ons tab (only Paul Clark in this example) has access to the plugins configuration screen
Sub-Tab Access - Only Chad Vader has access to just the Services menu item in the System tab
Custom Access - Only Paul Clark has access to the page whose URL ends with StructureAdmin
Project Admin Access - Only Paul Clark has access to the Delete Project page for all projects.
In the middle there is the for Sub-Tab Access section. This allows you to specify which users have access to the Audit Log, Indexing, Services and Shared Filters sub-tabs under the System tab. In the example above Chad Vader has access to the System tab but can only see the Services sub-tab (all others have been removed). If this is blank then the Services sub-tab has the same access restrictions as the System tab and Chad would not be able to see it because he doesn't have access to the System tab.
Next is the Custom Access section. This section allows you to restrict access to top level tabs of other plugins. In the example above the Structure plugin has added another top level tab called "Structure". The page displayed when this tab is changed to is "/myjira/secure/admin/StructureAdmin!view.jspa". In the example above the Page Name is StructureAdmin (taken from the URL after the last / and before any ! or .) and access is restricted to Paul Clark. More than one page can be specified by delimiting the page names with commas.
Lastly is the Project Admin Access section. This section allows you to specify who has access to the Delete Project, Issue Collector and Reindex Project pages in all projects admin screens. If no users are specified then everyone with Project Admin have access otherwise only the users specified have access.