Jira Software 9.0.x アップグレード ノート

Jira Software リリース ノート

このページの内容

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

Here are some important notes on upgrading to Jira Software 9.0.x.

 アップグレード ノート

Improved indexation for issue-related entities

To improve Jira performance, we've introduced a limit on the number of issue-related entities that will be indexed after the full issue reindex is triggered. By default, Jira will now index only 1000 newest comments, changehistory items, and worklogs. This value can be changed for each entity via a system property.

For more information about the feature and default limitations, see Safeguards in Jira DC index

API エンドポイントのセキュリティ修正

As mentioned in the release notes, we’ve restricted anonymous access to multiple API endpoints to fix security vulnerabilities. You’ll still be able to enable anonymous access for listed endpoints on Jira 9.0 and some later versions. However, this capability will be fully disabled in the upcoming LTS release. 

The following table lists all the restricted enpoints and features the scope of changes. 

エンドポイントWhat changedFeature flag
/rest/api/2/field

Anonymous access is blocked only when there are no projects available for anonymous users.

com.atlassian.jira.security.endpoint.non.browse.projects.access.fields

/rest/api/2/issueLinkType

Anonymous access is disabled completely.com.atlassian.jira.security.endpoint.anonymous.access.issueLinkType
/rest/api/2/jql/autocompletedata/Anonymous access is blocked only when there are no projects available for anonymous users.com.atlassian.jira.security.endpoint.non.browse.projects.access.autocompletedata

/rest/api/2/priority

Anonymous access is blocked only when there are no projects available for anonymous users. com.atlassian.jira.security.endpoint.anonymous.access.priority
/rest/api/2/projectCategoryAnonymous access is disabled completely.com.atlassian.jira.security.endpoint.anonymous.access.projectCategory
/rest/api/2/resolution

Anonymous access is blocked only when there are no projects available for anonymous users.

com.atlassian.jira.security.endpoint.anonymous.access.resolution
/rest/api/2/screensOnly admins have access to this endpoint.com.atlassian.jira.security.endpoint.non.admin.access.screens
/rest/api/latest/avatar/project/systemAnonymous access is disabled completely.com.atlassian.jira.security.endpoint.non.admin.access.avatar.system




Some project categories, status categories, issue link types, priorities, and resolutions may be accessible to anonymous users even if anonymous access is disabled. To restrict anonymous access to endpoints on Jira 9.0, you need to enable this feature flag by providing <feature.flag>.enabled.

  サポート終了のお知らせ

このリリースにはサポート終了のお知らせは含まれません。サポート対象プラットフォームの一覧については「サポート対象プラットフォーム」をご確認ください。

 アプリ開発者向けの情報

アプリに関するすべての重要な変更については、「Jira 9.0 への準備」を参照してください。

 アップグレード手順

Upgrading from a Jira version 9.x.x? 

  • 利用可能なすべてのアップグレード方法およびアップグレード前の手順を含む完全なアップグレード手順について、「Jira アプリケーションのアップグレード」をご参照ください。

  • For a more tailored upgrade, go to Jira administration > Applications > Plan your upgrade. We’ll recommend a version to upgrade to, run pre-upgrade checks, and provide you with a custom upgrade guide with step-by-step instructions.
最終更新日 2022 年 6 月 21 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.