FAQ on why "Export All Users to CSV" returns a 403 Error in Delegated Group Management for Jira App in Data Center?
Here are the Frequently Asked Questions when “Export All Users to CSV” Returns a 403 Error
Question 1:
What is the issue encountered when exporting users to CSV from Delegated Group Management (DGM)?
When clicking "Export All Users to CSV" under My Groups in DGM, some users (especially administrators) encounter a 403 Forbidden error in the browser console, and the file is not downloaded.
Question 2:
Who is affected by this issue?
Users not part of the group they are trying to export, even if they are administrators, will receive a 403 error.
Users who are members of the group can successfully export.
Question 3:
What causes the 403 error?
The app enforces a security rule introduced in earlier versions (fixed in 2.38 and enhanced in 2.41) where: Only users who are members of the group are permitted to export user lists to CSV. If the logged-in user is not a group member, DGM blocks the export and returns a 403.
Question 4:
How can I verify this behavior?
Steps to Reproduce:
1. Go to your Jira profile menu > My Groups.
2. Select a group that you manage via DGM.
3. Click "Export All Users to CSV".
4. If you're not a group member, 1. nothing downloads 2.Open browser console (F12): observe a 403 error.
5. Add yourself to the group and retry — the export will succeed.
Question 5:
How do I resolve this issue?
Solutions:
Ensure the exporting user is a member of the group.
Go to Jira Admin → User Management → Add user to the group being exported.
Logout and login again if the session has expired (another cause of 403 errors).
Upgrade to the latest version if you’re not already on ≥ v2.41.
Question 6:
Is this a bug?
No. This behavior is intentional and in line with DGM security rules. It ensures that only authorized and relevant group members can extract data.