Support OAuth 2.0 (3LO) Authentication for Atlassian Connect License API Endpoint

XMLWordPrintable

    • Jira Software

      Issue Summary

      The Atlassian Connect License API endpoint 

      (https://api.atlassian.com/ex/jira/{cloudId}/rest/atlassian-connect/1/addons/app-key)

       does not support OAuth 2.0 (3LO) authentication. When attempting to migrate from basic authentication to OAuth 2.0 (3LO), requests to this endpoint fail with a 401 Unauthorized error, and there is no documentation on required scopes or support for 3LO apps.

       

      Steps to Reproduce

      1. Register an OAuth 2.0 (3LO) app in the Atlassian Developer Console and request all available Jira scopes.
      1. Attempt to call the License API endpoint (https://api.atlassian.com/ex/jira/\{cloudId}/rest/atlassian-connect/1/addons/app-key) using a valid 3LO access token.

      Expected Results

      The API should return license information for the app, provided the access token has the necessary scopes.

      Actual Results

       

      {
    "code": 401,
    "message": "Unauthorized; scope does not match"
}

      Workaround

      Currently there is no known workaround for this behavior. A workaround will be added here when available

              Assignee:
              Unassigned
              Reporter:
              Yuvie Naidoo (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: