Safety considerations and limited access to some of the data necessitated the introduction of additional features to the search engine.
In Secure Fields 3.0 we created 3 Search Security Levels, so you could choose which option is the best for your organization. You can set it up in the Search Security Level Configuration menu
...
...
:
Log in as a user with the 'Jira Administrators' global permission.
Navigate to Admin menu → Manage apps. Select Secure Fields → Search Security Settings.
Tip: Keyboard shortcut: g + g + start typing search security..Click the Global settings button to select a search security level.
Search security levels
Performance - gives you an option to easily search through Secure Fields with full JQL capabilities.
...
The possible downside is that anyone will be able to perform search and see for instance values bigger/smaller than the given amount, but still will not be able to see the
...
precise value of the Secure Field. This level enables fast and efficient search.
Strict - has the same rules as the previous Secure Fields version had - limited JQL search, but harder for unauthorized people to find any information. Once you decide to upgrade to Secure Fields 3.0 all your secure fields will be automatically saved as Strict. We have also optimized search for this level, so if you decide to keep it this way, you will still feel the improvement in speed.
Disabled - there is no option to search through Secure Fields.
+ you can
...
define your own "Custom" search level.
Info |
---|
Take under your consideration that changing configuration will likely demand you reindexing Jira. |
Expand | ||
---|---|---|
| ||
Let's imagine you |
...
use many secure fields of different types. One of them is called "budget" and stores strictly confidential financial information you don't want to expose. |
...
The second field is called "detailed bug consequence" and contains a description of a bug you raised. Another field is Secure Single or Multi Select List. In the first case ("budget") we recommend using Strict search mode. Using Performance mode, in this case, may cause that some unprivileged and advanced users can try to examine the field content by subsequent querying for different values, such as budget > 1000 then budget > 10000, etc. They will not be able to see the field content, but issues that meet the condition will be returned |
...
as a result of the JQL search. |
...
Strict mode is recommended for Secure List fields as well, so unprivileged users will not be able to see list’s values via search. For "detailed bug consequence" |
...
you can use Performance mode as it's not possible to guess the long description. |
If you decide not to upgrade or stay with the Strict level of Security Search, you can still improve your efficiency search.
Searching in "Strict" Search Mode
The Secure Field plugin adds "issue in search" function to the JQL. This function takes from 2 to 4 arguments rounded by quotation marks.
Warning | ||
---|---|---|
| ||
Please note that using the |
Code Block |
---|
issue in secureFieldSearch("", "", "") |
1 - custom field's name
2 - operator's name
3 - custom field's value
Note: the custom field's value is not required in the case of using operators such as isEmpty or isNotEmpty.
4 - case sensitive/insensitive
Note: the argument valid for operators = and != for fields: Secure Text, Secure Free Text, Secure List, Secure Multi Select List, Secure Single User Picker, Secure Multi User Picker, Secure Single Group Picker, Secure Multi Group Picker.
...
Expand | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
You can use operators that are defined for the particular field types and are listed below:
|
Searching in Strict Search Mode
Info |
---|
Please note that in Strict search mode there is no JQL autocomplete for secure fields. |
If you decide not to upgrade or stay with the Strict level of Security Search, you can still improve your efficiency search.
The Secure Field plugin adds "issue in search" function to the JQL. This function takes from 2 to 4 arguments rounded by quotation marks.
Warning |
---|
Performance notePlease note that using the |
Searching functions
Secure Field Search
Code Block |
---|
issue in secureFieldSearch("", "", "") |
(“custom field's name”, “operator's name”, “custom field's value”)
Note: the custom field's value is not required in the case of using operators such as isEmpty or isNotEmpty.
Important: Possible values are case_sensitive/case_insensitive.
Example of use: issue in secureFieldSearch("Secure List Field", "contains", "3.0"); issue in secureFieldSearch("Secure List Field", "isNotEmpty")
Info |
---|
In large instances, due to better performance, please refer to functions described below as they allow you to search within secure fields in a limited range of issues. |
Secure Field Search with JQL
This function allows searching within the result of other JQL. It takes from 3 to 5 arguments rounded by quotation marks.
Code Block |
---|
issue in secureFieldSearchJQL("", "", "", "") |
This function allows to search within the result of other JQLs. It takes from 3 to 5 arguments rounded by quotation marks.
...
(“any JQL - like project = test, issuetype = Task, etc...”, “custom field's name“, “operator's name“, “custom field's value“)
Example of use: issue in secureFieldSearchJQL("updated >= -1d", "License key", "isNotEmpty")
Please keep in mind that if your JQL contains any double quotation
...
marks, please escape them - change to \"
...
or change to single quotation marks '.
...
...
For example for a JQL like project = "Some Project" change it to project = \"Some Project\"
2 - custom field's name
3 - operator's name
4 - custom field's value
...
Note: Possible values are case_sensitive/case_insensitive.
Secure Field Search with Filter
This function allows searching within the result of a search filter. It takes from 3 to 5 arguments rounded by quotation marks.
Code Block |
---|
issue in secureFieldSearchFilter("", "", "", "") |
This function allows to search within the result of a search filter. It takes from 3 to 5 arguments rounded by quotation marks.
...
(“filter id”, “custom field's name“, “operator's name“, “ custom field's value“)
To obtain a filter id (the filter id it is NOT a filter name
...
2 - custom field's name
3 - operator's name
4 - custom field's value
...
, we are using filter ids because of the fact that the id filter name is not unique within an instance of JIRA) please execute a filter and check your web browser address bar. The number after filter= will be your filter id.
...
Example of use: issue in secureFieldSearchFilter(10400, "Secure User field", "!=", "John Smith")
Note: Possible values are case_sensitive/case_insensitive.