Scope all Organizations APIs

XMLWordPrintable

    • 12

      Problem Definition

       * Some, but not all of the Organizations admin APIs: [https://developer.atlassian.com/cloud/admin/organization/rest/intro/#about] are scoped
       * Available scopes are listed here: [https://developer.atlassian.com/cloud/admin/scopes/]
       * For example, [https://developer.atlassian.com/cloud/admin/organization/rest/api-group-events/#api-v1-orgs-orgid-events-get] states Not supported (use API Key without scopes)

      Suggested Solution

       * Ship scopes for all Organization admin APIs - e.g. add a new scope for read:events:admin

      Why this is important

       * Offer org. admins better choices for choosing a scope they require for a specific task
       * Many org. admins are not able use an API key without scopes as that would leave the customer's organization too exposed

      Workaround 

      At the moment, the only option is to use an API key without scopes if the API does not support scopes

            Assignee:
            Unassigned
            Reporter:
            Derrick Nguyen (Inactive)
            Votes:
            25 Vote for this issue
            Watchers:
            30 Start watching this issue

              Created:
              Updated: