-
Suggestion
-
Resolution: Unresolved
-
25
-
Problem Statement
Org admins are able to generate admin API keys, to be used on our admin APIs. All admin API keys have an expiration date, that can goes until a year. Although it is expected that the key will expire on the desired date, users aren't notified when that happened. That being said, in case an admin has an ongoing integration relying on the API key, and they forget about the expiration date, this would cause an impact to the integration flow, and it would take some time for the admin to find out the issue and generate a new API key to use.
Suggested Solution
It'd be nice to allow users to extend this period or implement a feature to let the org admin know that a key is about to expire so that they make sure a new one is generated. This will avoid teams to keep monitoring and make sure to get a new Key every year so that it doesn't stop their external applications that are using it.
- is duplicated by
-
- Closed
-
- Gathering Interest
[ACCESS-1109] Notify admins when API key to expire/allow extensions
Or maybe add an API endpoint to list the name and expiration of all API tokens so that we can query them?
+1 my vote - just encountered a failure of the MS Defender for Cloud Apps integration today. Have diarised the renewal now but email reminders should be a simple (and welcome) automation
If Atlassian is able to send a notification to users regarding the expiry date of the API token, why can't we get this information for service accounts (which ours don't have actual email accounts)? Right now all users except those accounts will get an email when their token will expire. We need a solution for these other accounts.