Access Control

This page contains an overview of access control and permissions in Google Issue Tracker.

Issue Tracker provides fine-grained access control for components and other features like hotlists, bookmark groups and saved searches. This allows administrators and users to control who has what kind of access to tracking data managed by the tool. The access control model in Issue Tracker has two parts: identities and permissions.

Identities

Identities specify which users can perform actions in Issue Tracker. Issue Tracker supports the following types of identities:

  • Users
  • Groups
  • Public

Users

A user is an individual user identified by a Gaia ID. Gaia is the ID management system for all Google products. This ID may be an e-mail address associated with a Google domain (for example, user@gmail.com) or an e-mail address in another domain that has been configured by a Google Workspace domain administrator.

Groups

A group is a Google Group in the google.com or googlegroups.com domain (for example, group@googlegroups.com) that contains individual users, all of whom need to share the same level of access to tracking information.

Public

The Public group is a special group that contains all users including users who are not signed in to a Google Account.

Permissions

Permissions specify which actions can be performed in Issue Tracker. These permissions are managed on a per-identity basis for each component, hotlist, bookmark group or saved search. Component permissions control access to the component and to all the issues that it contains. Hotlist, bookmark group and saved search permissions control access on a per-entity basis. This means, for example, that each hotlist has its own permissions and that these can be granted to a specific user or a group as required.

Components

Component permissions control which actions can be performed on components and on the issues that they contain. Only Google employees can set or modify permissions on components.

Components have the following types of permissions:

  • Admin
  • Create Issues
  • Edit Issues
  • Comment on Issues
  • View Issues
  • Expanded Access

These permissions are managed on the component administration page.

The Access Control tab that is shown on the component administration page

Admin

The Admin permission allows users to view and change properties of the component itself. This includes changing the component name and description, creating and editing custom fields, creating child components, changing the parent component, creating templates and managing access control.

Only Google employees are granted Admin permission for a component.

Create Issues

The Create Issues permission allows users to create issues in the component. Users and groups who have Admin permission for a component always have Create Issues permission as well.

Edit Issues

The Edit Issues permission allows users to change the values of issue fields. Users and groups with this permission always have View and Comment permission as well.

Comment on Issues

The Comment on Issues permission allows users to view issues in the component and to add comments to it. Users and groups with this permission are not allowed to edit the values of other issue fields.

View Issues

The View Issues permission allows users to view issues in the component. Users and groups are not allowed to make any updates to the issues. Users with Edit or Comment permission are also considered to have View permission. Users and groups without this permission cannot find or view issues in the component.

Expanded Access

The Expanded Access setting automatically increases permissions for users on a per-issue basis, based on their role. For example, if a user is the Assignee, this setting automatically gives them permission to edit the issue. This allows the user to make edits to the issue while it is assigned to them, but does not change the user's permissions for all issues in the component. If the user is removed from that role, they lose the expanded access.

This setting automatically grants the following permissions:

  • Assignee receives edit access
  • Verifier receives edit access
  • Collaborator receives edit access
  • CC'd users receive comment access

When a group is given a role on the issue, all members of the group gain the corresponding permissions.

Explicit access warnings

When Expanded Access is turned off, it's possible to add a user to an issue they cannot access. To prevent confusion, Issue Tracker warns you when you make one of the following assignments:

  • Assignee does not have edit access
  • Verifier does not have edit access
  • Collaborator does not have edit access
  • CC'd user does not have view access
  • Mentioned user in a comment does not have view access

You should grant users the appropriate permissions before assigning them a role. If the user does not have at least read access before the assignment is made, they do not receive an email notification about the issue.

Issue Access Limits

Issue-level access limits enable Issue Admins to choose to limit access to specific issues. Learn more.

Hotlists

Hotlist permissions control which users can view a hotlist, edit hotlist details, and add and remove issues in a hotlist. Hotlists have the following types of permissions:

  • Admin
  • View and Append
  • View Only

When you create a hotlist, you are granted Admin permission and it is private to you by default until you grant other users or groups the Admin, View and Append or View Only permissions.

Admin

The Admin permission allows users to edit hotlist details. This includes editing the title and description, managing permissions, and archiving and unarchiving the hotlist. When you create a hotlist, you are granted the Admin permission automatically, but you can transfer this permission or grant this permission to additional users and groups.

View and Append

The View and Append permission allows users to add issues to and remove issues in the hotlist. Users with this permission can also reorder the hotlist issuse. Users or groups who have Admin permission for a hotlist always have View and Append permission as well.

View Only

The View Only permission allows users to view a hotlist. This includes finding and adding the hotlist to the left-hand navigation, viewing the list of issues that are part of the hotlist, and viewing the title, description and permissions for the hotlist. Users or groups who have Admin permission for a hotlist always have View Only permission as well.

Hotlist and issue visibility

Note the following:

  • Permission to view a hotlist does not itself grant permission to view the issues on the hotlist. Issues the user does not have access to view appear only by ID in the hotlist without the issue title.

  • Users who view an issue will only see that it is a member of a hotlist if they also have at least View permissions for the hotlist itself. In this case, a record of when the issue has been added or removed from the hotlist appears in the issue history, but only by ID without the hotlist title.

Bookmark groups

Bookmark group permissions control which users can edit and view a bookmark group. Bookmark groups have the following types of permissions:

  • Admin
  • View Only

When you create a bookmark group, you are granted Admin permission and it is private to you by default until you grant other users or groups the Admin or View Only permissions.

Admin

The Admin permission allows users to edit bookmark group details. This includes editing the title and description, adding and removing hotlists and saved searches, and archiving and unarchiving the group. When you create a bookmark group, you are granted the Admin permission automatically, but you can transfer this permission or grant this permission to additional users and groups.

View Only

The View Only permission allows users to find and view a bookmark group. This includes viewing which hotlists an saved searches that are part of the bookmark group, as well as its title, description and permissions. Users or groups who have Admin permission for a bookmark group are always granted View Only permission as well.

Saved searches

Saved search permissions control which users can edit and run a saved search. Saved searches have the following permissions:

  • Admin
  • View and Execute Search

When you create a saved search, you are granted Admin permissions and it is private to you by default until you grant other users or groups the Admin or View and Execute permission.

Admin

The Admin permission allows users to change properties of the saved search. This includes editing the title and description, changing the search criteria, and deleting the search.

View and Execute

The View and Execute permission allows users to run a saved search or make a copy of it. Users or groups who have Admin permission for a saved search always have the View and Execute permission as well.