Uploaded image for project: 'Identity'
  1. Identity
  2. ID-7853

Password authentication deprecation error in REST-API uses outdated URL

    XMLWordPrintable

Details

    Description

      Issue Summary

      If you attempt to authenticate using basic authentication with a password, or an invalid token, you get the below error message in return, which returns an invalid link to the deprecation notice:

      Basic authentication with passwords is deprecated. For more information, see: https://confluence.atlassian.com/cloud/deprecation-of-basic-authentication-with-passwords-for-jira-and-confluence-apis-972355348.html

      The link redirects you to Atlassian Cloud Documentation blog posts instead: (https://confluence.atlassian.com/cloud/blog

      Steps to Reproduce

      To reproduce the error message that contains the invalid URL, authenticate improperly:

      smackie@xxxxxxxxx ~ % curl -D- \
   -u shannon.TEST@TEST.com:####### \
   -X GET \
   -H "Content-Type: application/json" \
   https://gudetama.atlassian.net/wiki/rest/api/space
HTTP/2 401
server: AtlassianProxy/1.19.3.1
content-type: text/plain
strict-transport-security: max-age=315360000; includeSubDomains; preload
date: Fri, 03 Dec 2021 15:00:53 GMT
atl-traceid: db4809dadf37284a
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
expect-ct: report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", enforce, max-age=86400

Basic authentication with passwords is deprecated.  For more information, see: https://confluence.atlassian.com/cloud/deprecation-of-basic-authentication-with-passwords-for-jira-and-confluence-apis-972355348.html

      Expected Results

      The error message should point users to the correct deprecation notice and not redirect to the Cloud blog release notes.

      Actual Results

      The deprecation notice URL sends users to the Atlassian Cloud Documentation blog posts instead: (https://confluence.atlassian.com/cloud/blog

      Workaround

      Refer users to the following URLs:

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. JRACLOUD-81851 Misleading error message when authenticating REST API calls with API Key instead of API Token

          • Low - Low priority issues
          • Closed

          Activity

            People

              1fd62c7d8c8a Avinash Pooruli
              smackie@atlassian.com Shannon S
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: