Hi @Swetha N ,
Yes, that's possible, but there are a couple of things to keep in mind, such as some limitations and security considerations
External users can create their own API tokens if your organization's external user security policy allows it (more on that here).
However, it's worth noting that you cannot restrict an API token to only allow specific actions, e.g., "create item." API tokens inherit all permissions of the user account that created them.
That being said, you could create an API token from one of your 'own' accounts and share that with the external user, but proceed with caution ⚠️ Meaning, it's definitely not the best practice out there > the recommended approach would be for them to have their own account and generate an API token by themselves.
In the end, the API token will allow the user to perform any action their Jira permissions allow. If you want to limit what they can do, you must restrict their Jira account permissions (via global and/or space permissions) 👈
Hope this clarifies it.
Cheers,
Tobi
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.