tags:

views:

37

answers:

1
+1  Q: 

Configuring TFS2010 so users can create/update bugs but modify nothing else

Environment: I am administrator of a project in TFS 2010, but don't have any administrative rights for the project collection.

Is there an easy way that I can set up access rights for a group of users so that they can:

  • Create/update "Bug" work items only
  • View all other work items
  • Execute work item "Team Queries" and create their own queries
  • No access to source control

The idea is I want them to enter bugs, but I don't want them creating/modifying User Stories or Tasks, nor do I want them to have access to source control.

From what I can see, the standard groups don't have fine enough control:

  • Contributors can create all work item types
  • Readers can view files in Source Control as well as work items.

UPDATE

Limiting access to Source Control is covered by Ewald's answer.

However Ewald also indicates that there isn't a realistic way to set up security on the "Work Item Type" level so that users can only enter/update bugs. He suggests it could be achieved by customising every work item definition and setting field rules for every field on every work item type, but this is a lot of work, and in any case I want to avoid customising the process template.

I've therefore created an issue on Connect for this: https://connect.microsoft.com/VisualStudio/feedback/details/591121/configuring-tfs-project-so-that-users-can-create-update-bugs-but-modify-nothing-else

+1  A: 

I don't see a way to only allow modifications to a Bug work item other then modifying all the work items. You can modify the work items to set specific field rules (like readonly) for specific security groups (http://msdn.microsoft.com/en-us/library/ms194940.aspx) to get your result.

Your second issue is about Team Queries and Own queries. You can modify the permissions as stated in http://msdn.microsoft.com/en-us/library/dd286628.aspx.

For Source Control you can also change the permissions as stated in http://msdn.microsoft.com/en-us/library/ms253158.aspx.

Ewald Hofman  2010-08-28 18:36:16
Thanks for the response. For Source Control, you've given me what I want: I can easily set permissions on Source Control folders. Using field-level permissions to limit modifications to only bugs sounds a bit more complex than I'd hoped. I'm surprised. I want users to be able to create/update bugs, but I don't want them messing with other work item types that I'm using to manage the project, and I'd have thought this is a mainstream requirement.
Joe  2010-08-28 19:33:31

related questions

View TFS checkin history through merges?
Why won't my 2008 Team Build trigger on developer check-ins despite CI being enabled
TFS - Branching for experimental development: Solution fails to load
Find in Files: Search all code in Team Foundation Server
How to upgrade TFS 2005 to TFS 2008?
TFS Linking Backlog items
Whats the best way to deliver TFS build status notifications to the team?
Team Explorer on codeplex anonymously
Error using Team Foundation Server merge function
Do webtests need VS tester edition on the build server?
What types of testing do you include in your build process?
Query TFS for updated files
VS2008/TFS: Get Latest of solution from command line or macro
How do I rollback a TFS check-in?
Installing Team Foundation Server
TFS Lifecycle Management for Build Environment
Visual Source Safe --> TFS Migration
How do I change my workspace in Team Foundation Server 2k5 and 2k8?
What's the best way to manage a classic asp front-end using Visual Studio 2008?
MS Team Foundation Server in distributed environments - hints tips tricks needed
Where is TFS work item help text displayed?
VS 2008 - Objects disappearing?
How do I edit work items in the Visual Studio 2008 xml editor?
What is the difference between a bug and a change request in MSF for CMMI?
Experience with SVN vs. Team Foundation Server?