Redmine

Depending on your user's permissions you may be able to see all users or only some users in your Redmine. Basically., you can see all users if

• you are an Admin
• or if you are a member in any project with any role which grants you the permission to view all users

If you are only a member in projects with roles restricting you to view users in your projects, you should only be able to see users which are members of your projects.

I have tried to reproduce your description but was unable to find a case where this did not work as expected. Could you please provide more details here, specifically a detailed description of your project's, roles (and their permissions) and user memberships. Please try to define a minimal example which would allow us to reproduce your description based on a newly installed Redmine.

Pan Tau wrote:

Thx for quick answer and help.
By reducing the projects step by step and testing afterwards i finally found out the project which was causing this problem.
This project contained an role with "Users visibility" for "All activ users".

Thank you for verifying this. In that case, the systems works as intended.

I thought that the role option "Users visibility" only applies to the project it is assigned to, like the other role permissions.

It is a bit special in that way, yes. However, even if the permission would only apply to one project, this wouldn't restrict the set of data visible to the user as they could then still enumerate all users in this project.

Note that for visibility of issues (including notifications), we still check if the watcher is able to see the issue. Just because they are a watcher, they don't necessarily have the ability to see the issue or to receive notifications for it.

Actually a user needs only one role with "Users visibility" for "All activ users" in one project and he can search in every project in watchers search for all users.

Correct, as explained above.