Uploaded image for project: 'Automation for Jira Server'
  1. Automation for Jira Server
  2. JIRAAUTOSERVER-217

Automation for JIRA should use JIRA allowlist to external URLs

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Fixed
    • 7.3.0
    • Configuration
    • None

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      Currently, we have some different ways of controlling the URLs that A4J can send and receive webhooks.

      This might cause some problems in maintaining or adjusting A4J code when some patterns are changed. Eg. Microsoft Teams changed the pattern on their side and we need to change that too.

      We could easily avoid this kind of issues if we leave our URL security to JIRA allow list which is a feature used for a long time until now.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. JIRAAUTOSERVER-204 When trying to configure A4J to send MS Teams messages it doesn't recognize the URL pattern as valid

          • Medium - Medium priority issues
          • Long Term Backlog

          Activity

            People

              Unassigned Unassigned
              vseger@atlassian.com Victor Seger (Inactive)
              Votes:
              17 Vote for this issue
              Watchers:
              23 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: