Adds ticket security policy based on component


This plugin was heavily inspired by cboos' vulnerability tickets policy plugin.

The authz policy mechanism provides fine-grained permissions for wiki pages. This plugin attempts to provide fine-grained permissions for tickets segmented by component. Specifically, unless a user has SECURE_TICKET_VIEW permissions, they will only be able to see tickets of public components.

Bugs/Feature Requests

Existing bugs and feature requests for SecureTicketsPlugin are here.

If you have any issues, create a new ticket.


Download the zipped source from here.


You can check out SecureTicketsPlugin from here using Subversion, or browse the source with Trac.


An example is if you have a customer account team that creates and needs full access to tickets with a 'customer' component but should not have access to any other tickets. The trac.ini file would look like this:

securetickets.* = enabled


public_components = customer


permission_policies = SecureTicketsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy

Recent Changes

[14028] by rjollos on 2014-07-25 13:32:07
Added license headers and text. Refs #11832.
[14024] by rjollos on 2014-07-25 13:15:58
Removed empty directory.
[13991] by rjollos on 2014-06-22 11:47:31
Indentation and whitespace cleanup using


Author: robguttman
Maintainer: robguttman

Last modified 4 years ago Last modified on Dec 21, 2010, 11:01:05 PM