@mentioned issue across teams with guest users

anon17036750 · 16 August 2021 18:33

Hello,

Here’s the setup:
-We have set up a few teams to share projects with external clients.
-There is one team for each client.
-Our internal staff is a member of the team therefore able to see all of the projects for that client.
-Our external clients are set up as Guests who are only invited to the projects within their team that they are working on.

The problem:
When an external client (ie, guest user) @mentions in the comment section of a task, they get a list of all possible users they can direct the mention to. This seems like a serious oversight as they are able to see guest users from other teams (ie. our other clients) where they have no access. In our case, guest clients are able to see their competitors and in most cases their email addresses.

I can not find any way to prevent this from happening so I’m hoping someone can point me in the right direction.

I want our guest users to be able to comment on tasks in projects they are given access to and I want them to have the ability to direct @mentions to our internal team and their own team members but do not want to see who all of the guest users are.

Thanks all!

Ken

Andrea_Mayer · 16 August 2021 19:32

Hey @anon17036750

and the clients are really not added to the team directly? Only to the private project with comment only?

I think this should answer your question:

Here is a nice overview from Bastien as well about who can see who: Who sees whom, a guide to guest visibility with Batman & Robin

And here is a thread you might want to upvote: Assignee field should only show members of a project or team

anon17036750 · 16 August 2021 20:35

@Andrea_Mayer - correct, the clients are not added to the team directly and are individually added to each project with comment only.

My original problem was breaking the rule in the third bullet point from above but since posting discovered that my test user was actually included on a project in the other team therefore was able to see the other guests. After removing the test user from that team, everything is not behaving as expected.

Thanks for the response!

Phil_Seeman · 17 August 2021 03:14

Just to make sure, you meant “now behaving as expected”, right?

anon17036750 · 17 August 2021 14:27

Ha, yes “now”. Thanks for checking

Rebecca_McGrath · 24 August 2021 07:00

This topic was automatically closed after 6 days. New replies are no longer allowed.

Topic		Replies	Views
"Private user" for collaborators/Assignee Tips and Tricks	23	11015	27 April 2022
Guest are seen as private user, even inside the same team or same project Closed guests	20	3850	13 July 2020
Guest users: can anyone in an organization see a guest user? Tips and Tricks guests	6	2987	27 April 2022
Members as private users Tips and Tricks	11	3323	23 March 2021
Allow tasks to only be visible to team members and not guests Tips and Tricks	4	1230	22 April 2021

@mentioned issue across teams with guest users

Related topics