Issue Summary

This is reproducible on Data Center: no

Steps to Reproduce

1. Go to developer console (https://developer.atlassian.com/console/myapps/) and create an OAuth 2.0 integration.
2. Enable OAuth 2.0 (3LO) for the app.
3. Go to the Permissions tab, Add the Jira API, and then click Configure. Add one or more scopes from the Jira Service Management API section.
4. Go to the Authorization tab, click Configure and copy the authorization URL under Classic Jira Service Management API authorization URL.
5. Follow the consent process and obtain an OAuth 2.0 access token as described in Implementing OAuth 2.0 (3LO).
6. Try to access a JSM API using this token.

Expected Results

API call should succeed

Actual Results

API call fails with an error like:

OAuth 2.0 is not enabled for method: GET /rest/servicedeskapi/servicedesk}}

Workaround

On the Permissions tab in developer console, Configure the Jira API and add one or more scopes from the Jira platform REST API section.

Create an authorization URL that has both Jira and JSM scopes by editing the authorization URL obtained in step 4 above to include the added scope in the space-separated URL-encoded list of scopes, e.g. scope=read%3Ajira-work%20read%3Aservicedesk-request.

Alternatively, obtain an authorization URL for the Jira platform scopes separately. On the Authorization tab, click Configure and copy the authorization URL under Classic Jira platform REST API authorization URL. Complete the consent process.

Finally, repeat the reproduction steps above and requests to JSM APIs should now succeed.