Uploaded image for project: 'Jira Align'
  1. Jira Align
  2. JIRAALIGN-3047

Edit Profile: Non-Super Admin users have no access to the "API Token" button

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Highest Highest
    • 10.92, 10.93, 10.94
    • 10.91, 10.92
    • REST API
    • 2
    • Severity 1 - Critical
    • No

      Issue Summary

      Edit Profile: User non-Super Admin has no access to API token after deployment

      Steps to Reproduce

      Case 1:
      1. Log in to JA as a Super Admin.
      2. On the Administration > Platform > Security tab make sure that 'Enable API Token Access' is enabled (don't save).
      3. Create a new user with non-super admin role.
      4. Log in as a new user from the previous step.
      5. Go to 'Edit Profile' > Click 'API Token' button.

      Case 2 (critical):
      1. Log in to JA as a Super Admin.
      2. On the Administration > Platform > Security tab make sure that 'Enable API Token Access' is enabled > Save settings.
      3. Log in as a Non-Super Admin.
      4. Go to 'Edit Profile' > Click 'API Token' button.

      Expected Results

      • 'User API Tokens' pop-up is opened.
      • The user is able to generate tokens.

      Actual Results

      Case 1:
      The 'You Need More Access to View this Page' message shows up on the pop-up.

      Case 2:
      The 'API Token' button is not visible.

      Workaround

      Workaround for Case1:
      Login as a Super Admin and save Platform Settings.

      Workaround for Case2:
      Login as a Super Admin or directly call this URL https://<your-ja-instance>/EditMyProfileApiToken

              kforeman@atlassian.com Kyle Foreman
              2d9e3a4549ac Niyazi Fellahoglu
              Votes:
              4 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: