> For the complete documentation index, see [llms.txt](https://docs.go-atlassian.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.go-atlassian.io/jira-software-cloud/permissions/scheme.md). # Scheme A permission scheme is a collection of permission grants. A permission grant consists of a `holder` and a `permission`. The `holder` object contains information about the user or group being granted the permission. For example, the *Administer projects* permission is granted to a group named *Teams in space administrators*. In this case, the type is `"type": "group"`, and the parameter is the group name, `"parameter": "Teams in space administrators"`. The `holder` object is defined by the following properties: * `type` Identifies the user or group (see the list of types below). * `parameter` The value of this property depends on the `type`. For example, if the `type` is a group, then you need to specify the group name. The following `types` are available. The expected values for the `parameter` are given in parenthesis (some `types` may not have a `parameter`):
namedescription
namedescription
anyoneGrant for anonymous users.
applicationRole Grant for users with access to the specified application (application name). See Update product access settings for more information.
assigneeGrant for the user currently assigned to an issue.
groupGrant for the specified group (group name).
groupCustomFieldGrant for a user in the group selected in the specified custom field (custom field ID).
projectLeadGrant for a project lead.
projectRoleGrant for the specified project role (project role ID).
reporterGrant for the user who reported the issue.
sd.customer.portal.onlyJira Service Desk only. Grants customers permission to access the customer portal but not Jira
userGrant for the specified user (user ID - historically this was the userkey but that is deprecated and the account ID should be used).
userCustomFieldGrant for a user selected in the specified custom field (custom field ID).
## Get all permission schemes `GET /rest/api/{2-3}/permissionscheme` Returns all permission schemes. {% code fullWidth="true" %} ```go package main import ( "context" _ "github.com/ctreminiom/go-atlassian/v2/jira/v3" "github.com/ctreminiom/go-atlassian/v2/jira/v2" "log" "os" ) func main() { /* ----------- Set an environment variable in git bash ----------- export HOST="https://ctreminiom.atlassian.net/" export MAIL="MAIL_ADDRESS" export TOKEN="TOKEN_API" Docs: https://stackoverflow.com/questions/34169721/set-an-environment-variable-in-git-bash */ var ( host = os.Getenv("HOST") mail = os.Getenv("MAIL") token = os.Getenv("TOKEN") ) atlassian, err := v2.New(nil, host) if err != nil { log.Fatal(err) } atlassian.Auth.SetBasicAuth(mail, token) permissionSchemes, response, err := atlassian.Permission.Scheme.Gets(context.Background()) if err != nil { log.Fatal(err) } log.Println("HTTP Endpoint Used", response.Endpoint) for _, permissionScheme := range permissionSchemes.PermissionSchemes { log.Println(permissionScheme.ID, permissionScheme.Name) } } ``` {% endcode %} ## Get permission scheme `GET /rest/api/{2-3}/permissionscheme/{schemeId}` Returns a permission scheme. {% code fullWidth="true" %} ```go package main import ( "context" _ "github.com/ctreminiom/go-atlassian/v2/jira/v3" "github.com/ctreminiom/go-atlassian/v2/jira/v2" "log" "os" ) func main() { /* ----------- Set an environment variable in git bash ----------- export HOST="https://ctreminiom.atlassian.net/" export MAIL="MAIL_ADDRESS" export TOKEN="TOKEN_API" Docs: https://stackoverflow.com/questions/34169721/set-an-environment-variable-in-git-bash */ var ( host = os.Getenv("HOST") mail = os.Getenv("MAIL") token = os.Getenv("TOKEN") ) atlassian, err := v2.New(nil, host) if err != nil { log.Fatal(err) } atlassian.Auth.SetBasicAuth(mail, token) var ( permissionSchemeID = 10001 expand = []string{"field", "group", "permissions", "projectRole", "user"} ) permissionScheme, response, err := atlassian.Permission.Scheme.Get(context.Background(), permissionSchemeID, expand) if err != nil { log.Fatal(err) } log.Println("HTTP Endpoint Used", response.Endpoint) log.Println(permissionScheme) } ``` {% endcode %} ## Create permission scheme `POST /rest/api/{2-3}/permissionscheme` Creates a new permission scheme. You can create a permission scheme with or without defining a set of permission grants. {% code fullWidth="true" %} ```go package main import ( "context" _ "github.com/ctreminiom/go-atlassian/v2/jira/v3" "github.com/ctreminiom/go-atlassian/v2/jira/v2" "github.com/ctreminiom/go-atlassian/pkg/infra/models" "log" "os" ) func main() { /* ----------- Set an environment variable in git bash ----------- export HOST="https://ctreminiom.atlassian.net/" export MAIL="MAIL_ADDRESS" export TOKEN="TOKEN_API" Docs: https://stackoverflow.com/questions/34169721/set-an-environment-variable-in-git-bash */ var ( host = os.Getenv("HOST") mail = os.Getenv("MAIL") token = os.Getenv("TOKEN") ) atlassian, err := v2.New(nil, host) if err != nil { log.Fatal(err) } atlassian.Auth.SetBasicAuth(mail, token) payload := &models.PermissionSchemeScheme{ Name: "EF Permission Scheme", Description: "EF Permission Scheme description", Permissions: []*models.PermissionGrantScheme{ { Permission: "ADMINISTER_PROJECTS", Holder: &models.PermissionGrantHolderScheme{ Parameter: "jira-administrators-system", Type: "group", }, }, { Permission: "CLOSE_ISSUES", Holder: &models.PermissionGrantHolderScheme{ Type: "assignee", }, }, }, } permissionScheme, response, err := atlassian.Permission.Scheme.Create(context.Background(), payload) if err != nil { log.Fatal(err) } log.Println("HTTP Endpoint Used", response.Endpoint) log.Println(permissionScheme) } ``` {% endcode %} ## Delete permission scheme `DELETE /rest/api/{2-3}/permissionscheme/{schemeId}` Deletes a permission scheme. {% code fullWidth="true" %} ```go package main import ( "context" _ "github.com/ctreminiom/go-atlassian/v2/jira/v3" "github.com/ctreminiom/go-atlassian/v2/jira/v2" "log" "os" ) func main() { /* ----------- Set an environment variable in git bash ----------- export HOST="https://ctreminiom.atlassian.net/" export MAIL="MAIL_ADDRESS" export TOKEN="TOKEN_API" Docs: https://stackoverflow.com/questions/34169721/set-an-environment-variable-in-git-bash */ var ( host = os.Getenv("HOST") mail = os.Getenv("MAIL") token = os.Getenv("TOKEN") ) atlassian, err := v2.New(nil, host) if err != nil { log.Fatal(err) } atlassian.Auth.SetBasicAuth(mail, token) var permissionSchemeID = 10004 response, err := atlassian.Permission.Scheme.Delete(context.Background(), permissionSchemeID) if err != nil { log.Fatal(err) } log.Println("HTTP Endpoint Used", response.Endpoint) } ``` {% endcode %} ## Update permission scheme `PUT /rest/api/{2-3}/permissionscheme/{schemeId}` Updates a permission scheme {% code fullWidth="true" %} ```go package main import ( "context" _ "github.com/ctreminiom/go-atlassian/v2/jira/v3" "github.com/ctreminiom/go-atlassian/v2/jira/v2" "github.com/ctreminiom/go-atlassian/pkg/infra/models" "log" "os" ) func main() { /* ----------- Set an environment variable in git bash ----------- export HOST="https://ctreminiom.atlassian.net/" export MAIL="MAIL_ADDRESS" export TOKEN="TOKEN_API" Docs: https://stackoverflow.com/questions/34169721/set-an-environment-variable-in-git-bash */ var ( host = os.Getenv("HOST") mail = os.Getenv("MAIL") token = os.Getenv("TOKEN") ) atlassian, err := v2.New(nil, host) if err != nil { log.Fatal(err) } atlassian.Auth.SetBasicAuth(mail, token) payload := &models.PermissionSchemeScheme{ Name: "EF Permission Scheme - UPDATED", Description: "EF Permission Scheme description - UPDATED", Permissions: []*models.PermissionGrantScheme{ { Permission: "CLOSE_ISSUES", Holder: &models.PermissionGrantHolderScheme{ Parameter: "jira-administrators-system", Type: "group", }, }, }, } permissionScheme, response, err := atlassian.Permission.Scheme.Update(context.Background(), 10004, payload) if err != nil { log.Fatal(err) } log.Println("HTTP Endpoint Used", response.Endpoint) log.Println(permissionScheme.Name) log.Println(permissionScheme.ID) log.Println(permissionScheme.Description) log.Println(permissionScheme.Self) for _, permissionGrant := range permissionScheme.Permissions { log.Println(permissionGrant.ID, permissionGrant.Permission) } } ``` {% endcode %} --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.go-atlassian.io/jira-software-cloud/permissions/scheme.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.