Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to Validate username and API token for Jira Rest API

vholechi
vholechi
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 19, 2023

Case 1 :

When we use a valid username and api_token combination ,
(as per https://developer.atlassian.com/cloud/jira/platform/basic-auth-for-rest-apis/)
i.e., useremail:api_token (Base64 encoded) with any rest API call

The response code is 200 OK and we get the valid response also.

Case 2:

But when the invalid username and api_token combination is used with any rest API call,

The response code is still 200 OK but the response will be empty as the authentication will be failed.

Question 1 : What is the best way to validate if the given username and API token is correct / valid. ??


one observation we found while analyzing is as part of the above Case 2 is that as part of the response headers when the Authentication is failed, there will be a header value "X-Seraph-Loginreason=AUTHENTICATED_FAILED".

Question 2 : Can we relay on the above response header to validate if the username and api_token is valid or not ??

 

Answer
Watch
Like Be the first to like this
2262 views

1 answer

0 votes
Kian Stack Mumo Systems
Kian Stack Mumo Systems
Community Champion
July 19, 2023

@vholechi

 

Try making a call for a specific issue instead - https://developer.atlassian.com/cloud/jira/platform/rest/v3/api-group-issues/#api-rest-api-3-issue-issueidorkey-get.

 

Some rest calls work even without being authenticated, but the get issues end point should return a 401 is the token is wrong.

View More Comments
vholechi
vholechi
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 20, 2023

@Kian Stack Mumo Systems 
Thanks for the response,

We verified this api and such api's by providing the particular issue id/key but still it does not give the 401 response code and it gives 404 Not found error.

Also to use the suggested api we wouldn't have the issue id/key before hand while validating, hence this would not help in our case.

We tried api similar to below once and this gives 404 NOT FOUND  if the username/api-token is invalid

https://developer.atlassian.com/rest/api/3/issue/CD-22

Like
Kian Stack Mumo Systems
Kian Stack Mumo Systems
Community Champion
July 21, 2023

@vholechi, developer.atlassian.com is not a jira site, so the API wouldn't work. 

 

Try this one https://developer.atlassian.com/cloud/jira/platform/rest/v3/api-group-jira-settings/#api-rest-api-3-application-properties-get

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security