Adds ticket security policy based on component


This plugin was heavily inspired by cboos' vulnerability tickets policy plugin.

The authz policy mechanism provides fine-grained permissions for wiki pages. This plugin attempts to provide fine-grained permissions for tickets segmented by component. Specifically, unless a user has SECURE_TICKET_VIEW permissions, they will only be able to see tickets of public components.

Bugs/Feature Requests

Existing bugs and feature requests for SecureTicketsPlugin are here.

If you have any issues, create a new ticket.


Download the zipped source from here.


You can check out SecureTicketsPlugin from here using Subversion, or browse the source with Trac.


An example is if you have a customer account team that creates and needs full access to tickets with a 'customer' component but should not have access to any other tickets. The trac.ini file would look like this:

securetickets.* = enabled


public_components = customer


permission_policies = SecureTicketsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy

Recent Changes

[13991] by rjollos on 2014-06-22 11:47:31
Indentation and whitespace cleanup using
[9700] by robguttman on 2010-12-22 05:34:10
fixes edge case for viewing multirepo source browser
[9699] by robguttman on 2010-12-21 22:49:48
initial checkin


Author: robguttman
Maintainer: robguttman

Last modified 4 years ago Last modified on Dec 21, 2010 11:01:05 PM