I'm using SonarQube v6.5 and am still getting used to the permissions model.
I was experimenting with 'bulk apply permissions' to allow a new group to read our existing Sonar Projects.
I updated our default permission template to give permission to those users, and bulk applied it across all projects.
The default permission template says that it will give project creators full access to projects they create. But when I bulk applied that template to our existing projects, it deleted permissions for project creators and only gave access to the groups that were explicitly mentioned in the project template.
If a project had manually given permissions for many users this would have deleted all of those also it seems.
This seems to mean that 'bulk apply permission template' is a destructive operation and there should be a clear warning when you use this feature. Am I understanding correctly? Can the development team please add such a warning to the tool? Ideally permissions for project creators should also not be deleted.