Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to create a service request with the rest api? 2025

senne roovers
senne roovers
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 7, 2025

Hi 

I've been searching to what the current setup would be on defining a correct api call to create a simple request in order to create a service request for my application so we can start reporting and collecting incidents.

I struggle to find the latest up-to-date information on how to set this up:
- What is the url to use
- How to authorize my application (OAuth / jwt) 
- any other info that you have for me is welcome

(using a React fetch call)

 

Thanks in advance

Answer
Watch
Like Liz Tanner likes this
60 views

2 answers

0 votes
Liz Tanner
Liz Tanner
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 7, 2025

On the "How to authorize my application (OAuth / jwt)" part of your question:

You can use basic authorization (API key) or OAuth 2.0 (3LO), but you absolutely should not implement authorization in the React frontend. That is a major security risk, since your token is now exposed to client-side code. That's not good.

If you are building a React app, hide your API Token safely on the backend (Node.js, PHP, etc.). This way you can send request data and make your POST call to JSM API. This hides your sensitive API Token info and enables your authorization to the backend data without any potential exposure risks.

If you are building a Forge app, you API Token is hidden and you do not have to worry about any security risks or sensitive data exposure. The API Token is generated in Profile page (top right, click on your avatar, go to Profile, go to Security. 3rd blue button down.) and is hidden in your app manifest.

Bill absolutely got you the correct endpoint in his previous message. So, you're all set there!

View More Comments
senne roovers
senne roovers
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 8, 2025

Thanks for the advice, although i am aware of the security risk and it won't be an issue!

I have the api token in the profile page. I think i gave it the right permissions to create requests.

from what i found, for basic authorization that should just be a base 64 encoding of the <user email>:<api token>

But that doesn't work (Jira API error: Client must be authenticated to access this resource.)

There is something that i am missing that i am not aware of but i can't find it

Like
Reply
0 votes
Bill Sheboy
Bill Sheboy
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 7, 2025

Hi @senne roovers 

What did you find when you searched for that?

Did you find the REST API documentation describing this endpoint, and supporting information for using it: https://developer.atlassian.com/cloud/jira/service-desk/rest/api-group-request/#api-rest-servicedeskapi-request-post

Kind regards,
Bill

View More Comments
senne roovers
senne roovers
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 8, 2025

Great, thanks.

That's the api i found, but then i started doubting if it was even the right endpoint.
Also, since i didn't get a correct response, there was no confirmation there that anything was correct.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Management
Jira Service Management
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
FREE
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security