YouTrack Cloud 2024.3 Help

Manage Group Access

The Roles tab lets you view and manage the permissions that are available to the members of a group. Group members inherit permissions based on the roles that are assigned to the group in one or more projects.

You can also use groups to grant group members access to a project by adding the group directly to the project team. For more information, see Manage the Project Team.

View Access Permissions of a Group

The access permissions for a group are displayed on the Roles tab of the group profile. Here, you can view which roles are assigned to the group.

  • The list displays each role assigned to the group and the number of projects in which the group is granted this level of access.

  • Beneath each role is a list of projects in which this role is granted.

  • The sidebar displays the set of permissions that are assigned to the selected role.

Group roles

To view the access rights for a group:

  1. Open the Roles tab of the group profile.

  2. Use the search box to filter the list by a role, project, or even a particular permission to find out if the group has the required access to a resource or operation.

    Group roles filtered

Grant a Role to a Group

You can grant a role to a group directly. Members of the group are granted all access permissions that are assigned to this role.

To assign an individual role to a group:

  1. From the Administration menu, select Access Management > Groups.

  2. In the list of groups, locate a group that you want to assign a role to and click its name to open the group profile.

  3. Select the Roles tab.

  4. Click the Grant role button.

    Grant role to group
  5. In the Grant Role dialog, choose a role to assign to the group.

  6. Select one or more project or organization where you want to apply the role. If you want to apply the role to all projects in YouTrack, select the Global project.

  7. Click the Grant role button.

    • The selected role is granted to the group, and all its permissions are granted to the users who are members of the group.

Revoke a Role from a Group

If a group of users no longer requires access granted by a role, you can revoke the role assignment.

To revoke a role from a group:

  1. From the Administration menu, select Access Management > Groups.

  2. Use the search box to find the desired group.

  3. Select a group from the list.

  4. Select the Roles tab.

  5. Locate the role assignment that you want to remove from the selected group. Use the search box to locate a role by name, project, or permission.

  6. Under the role assignment, select the project in which the role is granted.

    Revoke role group
  7. Click the Revoke role button.

  8. Confirm the action in the confirmation dialog.

    • The role is revoked from the group in the selected project.

    • Members of the group lose the permissions that are assigned to the role in the project.

Last modified: 09 October 2024