Usual caveats apply as to hacking your data directly:
- not supported - act with care
- do a DB backup first
- blah blah
JIRA comments are stored in the jiraaction DB table.
You will see a column named "actiontype" and you will probably find that all rows have a value of "comment".
(Worklogs used to be in there too, but got moved).
Comments can be secured via a group or a project role (depending on global settings).
There is a column called "actionlevel" for when its a group and another called "rolelevel" for project role.
If both these are NULL, then no security, otherwise you only set one or the other.
After running your SQL you will need to do a reindex in order for the JQL searches to secure your searches accordingly.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.