• Icon: Suggestion Suggestion
    • Resolution: Unresolved
    • None
    • OAuth 2.0 Client
    • None
    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Hello Team,

      Would like to understand, why we are not using Client Credential Grant Flow as mentioned in the below article for OAuth 2.0 integration with Jira.
      https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-client-creds-grant-flow
      https://datatracker.ietf.org/doc/html/rfc6749#section-4.4

      Questions:

      1. Why Client Credential Grant Flow is not used while integrating OAuth 2.0 in Jira
      2. Is this not the flow that should be used for machine-to-machine scenarios?

            [OAUTH20-176] Client Credential Grant Flow for OAuth 2.0

            Reference to JRASERVER-76189 also with a statement from may:

            We're adding support for OAuth 2.0 Clients Credentials Grant Flow to make it easier to set up incoming and outgoing mail in Jira Data Center. While the fully available version is planned for release with Jira 10, early adopters can already use it in Jira 9.16 (accessible via a feature flag). If you're keen on trying out the early version and want more information, feel free to reach out to me at mmiodek@atlassian.com.

            Tim Eddelbüttel added a comment - Reference to JRASERVER-76189 also with a statement from may: We're adding support for OAuth 2.0 Clients Credentials Grant Flow to make it easier to set up incoming and outgoing mail in Jira Data Center. While the fully available version is planned for release with Jira 10, early adopters can already use it in Jira 9.16 (accessible via a feature flag). If you're keen on trying out the early version and want more information, feel free to reach out to me at mmiodek@atlassian.com.

            Hi Team,

            This ticket is specifically about Oauth2 for server. If you would like this feature for Cloud please see

            James Richards added a comment - Hi Team, This ticket is specifically about Oauth2 for server. If you would like this feature for Cloud please see https://jira.atlassian.com/browse/ID-8435

            Hi Team,

             

            Is this flow implemented successfully or still going through the development phase? I still can see a lot of problems with this flow. Can anyone please give some details about it ? 

            Nikhil Dhiman added a comment - Hi Team,   Is this flow implemented successfully or still going through the development phase? I still can see a lot of problems with this flow. Can anyone please give some details about it ? 

            Please implement it.

            Dibyandu Roy added a comment - Please implement it.

            ii added a comment -

            Hi Everyone, I just need some help in setting up my incoming server to use Oauth2.0 with Azure/O365.

            I managed to create the server and it's fetching emails fine but the credentials expire after 30 x days and I have to reenter them.

            Is there a doc on how to create this so it's via an Azure App registration or Enterprise App?

            I see that I have Jira Cloud in my Azure Enterprise apps and the logins logs tally up but it's the 30 x days renewal that is doing my head in.

            I posted this in the community but got nothing back  

            Enable continous authentication for Incoming mail (atlassian.com)

             

            Thanks, II 

            ii added a comment - Hi Everyone, I just need some help in setting up my incoming server to use Oauth2.0 with Azure/O365. I managed to create the server and it's fetching emails fine but the credentials expire after 30 x days and I have to reenter them. Is there a doc on how to create this so it's via an Azure App registration or Enterprise App? I see that I have Jira Cloud in my Azure Enterprise apps and the logins logs tally up but it's the 30 x days renewal that is doing my head in. I posted this in the community but got nothing back   Enable continous authentication for Incoming mail (atlassian.com)   Thanks, II 

              Unassigned Unassigned
              nravi@atlassian.com Naveen Ravi
              Votes:
              36 Vote for this issue
              Watchers:
              36 Start watching this issue

                Created:
                Updated: