Details
-
Suggestion
-
Resolution: Done
-
180
-
Description
Problem Definition
Atlassian accounts are able to generate API tokens for use with Jira and Confluence cloud APIs. At the moment, org admins can only revoke these tokens but they cannot enforce policies on the token usage of their managed accounts.
Suggested Solution
If a user belongs to an organization, give admins the following abilities:
- Enable or block a managed account from issuing tokens
- Make the creation of API tokens admin-only
- Log or track the creation of API tokens (such as in audit logs)
- Set a default expiration for the tokens that can be created (ie, 1 week, unlimited not allowed). see ID-7825
- Have the ability to extract a report of all users that currently have API tokens
- Track whether API Keys are used by User in any project
- Track report on API Keys usage.
Attachments
Issue Links
- is duplicated by
-
- Closed
-
- Closed
- is related to
-
- Closed
-
ACE-3014 Loading...
-
-
- relates to
-
- Closed
-
- Closed
-
- Gathering Interest
- addresses
-
- blocks
-
- has action
-
- mentioned in
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-