Creating a Private Project
When a project is created, the default visibility for the project is Public, which means that any Code Insight user has read-only access to the project. To what degree a user can interact with the project depends on whether the user has a project role and what the role is. (See Creating a Code Insight Project for instructions on creating a public project.)
Security-conscious project creators can control access to their projects within the enterprise by setting a project’s visibility to Private. This feature gives project creator the ability to hide sensitive information from general view and select specific users who can view the project. Private projects are hidden from all users except the Project Contact and those users assigned as Project Administrators, Analysts, Reviewers, or Observers of the project. Additionally, project and vulnerability ID searches will not return private projects unless the user performing the search has the permissions to see a given private project.
When a private project is created, the creator automatically becomes the Project Contact and is assigned to the Project Administrator, Analyst, Reviewer, and Observer roles. These roles enable the creator to initially manage the project and its users, analyze the project codebase, and review project inventory. However, creators can remove themselves from any of these roles to let others handle project responsibilities.
Users who have System Administrator privileges but are not part of a Private project can see the project in the list of projects in the Projects view, access the Summary tab for the project, and change the project contact.
For information roles, see Assigning or Removing Project User Roles .
To create a private project, do the following:
- Navigate to the Projects view. (See Opening the Projects View if additional instructions are needed.)
- In the Projects pane on the left, click Add New. The Add Project dialog appears with default values appearing in all the fields but Name.
- In the Name field, enter a name for the new private project.
- From the Project Visibility dropdown list, select Private.
- Complete the other fields as described in Creating a Code Insight Project.
- Click Save to save the new private project.
This project is visible in the list of projects to only the Project Contact and any Project Administrator, Analyst, Reviewer, or Observer of the project. Additionally, the project and vulnerability ID searches will not return private projects unless the userperforming the searchhas the permissions to see these projects.
- (Optional) Assign roles to users who will interact with the private project. For more information, see Assigning or Removing Project User Roles.