Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

OAuth 2.0 support for Goals and Projects API is now available

Hi community,

We’ve heard your feedback on needing more robust ways to authenticate to the Goals and Projects API than personal tokens.

We’re excited to share that we now support OAuth 2.0 (both 2LO and 3LO) for our Goals and Projects APIs.

What’s changing?

  • New Auth Options: You can now use 2-legged OAuth (2LO) for machine-to-machine integrations. and 3-legged OAuth (3LO) for user-facing apps.

  • Granular Scopes: We’ve introduced specific scopes like read:goal:goals
    and write:goal:goals so you can control exactly what data your integrations can access. You can see the full list of support scopes in the developer documentation.

  • Forge Support: Forge developers can now leverage these scopes to build powerful new apps for the Atlassian ecosystem.

Screenshot 2026-07-16 at 4.39.33 pm.png

Why are we making this change?

Security is a top priority. This update allows organisations to access Goals and Projects data into internal dashboards, reporting tools, and custom workflows in a more secure, robust manner instead of relying on API tokens.

To get started with this change

OAuth 2.0 (2LO) apps are created and managed in Atlassian Administration.

  1. Go to Atlassian Administration. Select your organization if you have more than one.

  2. Select Directory > Service accounts.

  3. Select the service account you want to create a credential for.

  4. Select Create credentials.

  5. Select OAuth 2.0, then select Next.

  6. Select scopes to determine what the API token can do in Goals or Projects. Select Next.

  7. Review your OAuth information, then select Create.

  8. Copy your client ID and client secret and save them somewhere safe. You can't recover them after you create the credential. We recommend you save the ID and secret in a password manager.

OAuth 2.0 (3LO) apps are created and managed in the developer console.

  1. From any page on developer.atlassian.com, select your profile icon in the top-right corner, and from the dropdown, select Developer console.

  2. In the Developer console, select the Create dropdown and choose OAuth 2.0 integration to create an OAuth 2.0 (3LO) app.

  3. Enter an app name and choose the OAuth 2.0 (3LO) grant type for your app.

Resources

We want your feedback!

Are there specific use cases you’re excited to build? Let us know in the comments below!


The Goals & Projects Team

0 comments

Comment

Log in or Sign up to comment
TAGS
AUG Leaders

Atlassian Community Events