Issue cannot be viewed and Permission Violation error is thrown

Related content

Still need help?

The Atlassian Community is here for you.

Ask the community

Platform Notice: Data Center - This article applies to Atlassian products on the Data Center platform.

Note that this knowledge base article was created for the Data Center version of the product. Data Center knowledge base articles for non-Data Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Symptoms

Accessing existing issue throws Permission Violation message. 

Diagnosis

  1. Check if the user has permission to view other issue in the same project

  2. Check if none of the user in the instance can access the issue

  3. Confirm if the issue does exist in the database

    select * from jiraissue where issuenum=<issue_num> and project in (select id from project where pkey='<project_key>');

  4. After confirming that the issue exist, check the issue is using the correct Security Level. In the database check the SECURITY column in the jiraissue table. Example:

    select id,SECURITY from jiraissue where issuenum=<issue_num> and project in (select id from project where pkey='<project_key>');

    (info)  take note of the SECURITY's ID

  5. Check which Issue Security Scheme that this security level is associated to:

     select * from schemeissuesecuritylevels where id=<SECURITY_ID>;

    (info)  take note of the Security Scheme ID under the SCHEME column

  6. Compare the Security Scheme's ID with the one associated to the project . The {{SINK_NODE_ID}} must match the Security Scheme ID return in the Step 5. 

    select * from nodeassociation where SOURCE_NODE_ID in (select id from project where pkey='<PROJECT_KEY>') and ASSOCIATION_TYPE='ProjectScheme' and SINK_NODE_ENTITY='IssueSecurityScheme';

    (info) replace the <PROJECT_KEY> with the project's key

  7. If the SINK_NODE_ID in Step 6 does not match SCHEME value in Step 5, this indicate the issue is using incorrect Security Level ID.

  8. Optionally, confirm if there other issues in the same project affected by the same problem:

     select id,issuenum from jiraissue where project in (select id from project where pkey='<PROJECT_KEY>' ) and SECURITY not in (select SECURITY from schemeissuesecurities where SCHEME=<SCHEME>);

Cause

The issue is referring to the Security Level ID that is not being used in the project.

Resolution

  1. Backup JIRA database before performing the following data modification

  2. Run the following query to reset the SECURITY column to null

    update jiraissue set security=null where id=<issue_id>;

    (warning) this will make the issue accessible by all users that has the Browse Project permission in the project

  3. Set the Security Level in the issue via JIRA UI to secure the instance
Last modified on Jan 9, 2025

Was this helpful?

Yes
No
Provide feedback about this article

Related content

Powered by Confluence and Scroll Viewport.