Hello!
I understand that Xray Cloud currently authorizes the users via /api/v2/authenticate with Client ID and Secret. . I would like to understand from the community if there are any alternative authentication methods for Xray Cloud REST API besides using Client ID and Client Secret?
- Does Xray Cloud support certificate-based authentication or other enterprise-friendly options like integration with external identity providers (e.g., Azure AD)?
- Is there any way to implement user impersonation for API calls, similar to what Atlassian supports for Connect Apps with OAuth 2.0 JWT bearer Token Authorization grant type? (User Impersonation for Connect Apps)?
My goal is to securely upload automated test results to Xray Cloud alongwith evidences, but wihout using the key based authentication. Are there any recommended approaches for organizations that do not want to use the client ID + Secret based approach?
Thank you ,
Vijaylakshmi
