Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Rovo MCP | How to find authenticated user and account details?

Muhammed U K
Muhammed U K
April 25, 2026

Hello,

I am implementing Atlassian Rovo MCP to my AI Agent. I am using Oauth 2.1 and DCR (dynamic client regitration). I am redirecting user to consent screen and after user authorized, I m getting request to my callback URL and Im getting code and exchanging that code I am getting access token and refresh token. All works fine.

I need help in figuring out to how to identify
1. Which account user has authorized (user might have access to different accounts/part of different organisation itself)
2. User details - atleast their email address/username.

I tried to make calls to below endpoints with the access token, but Im getting unauthorized error. It might be due to MCP auth token is different from the normal api token.
1. https://api.atlassian.com/me
2. https://api.atlassian.com/oauth/token/accessible-resources

Please do help.

Answer
Watch
Like Be the first to like this
149 views

1 answer

1 vote
Martin Runge
Martin Runge
Community Champion
April 25, 2026

Hi @Muhammed U K

Welcome to the Atlassian community!

It sounds like you've successfully cleared the OAuth handshake, but your access token might be missing the specific permissions required to call the user identity endpoints.

To access user details and account resources, make sure to include the specific scopes: read:me & read:account in your manifest file.

The /oauth/token/accessible-resources endpoint is the proper method to determine which "sites" (Jira/Confluence instances) the user has authorized. If you encounter a 401 Unauthorized error, it's almost certainly due to a scope problem. Once you receive a response from accessible-resources, you'll get a cloudId, and with the correct scope enabled, a GET request to https://api.atlassian.com/me should also function properly.

 

View More Comments
Muhammed U K
Muhammed U K
April 25, 2026

I tried it, but Im still getting 401 unauthorized.

The authorization endpoint is - https://mcp.atlassian.com/v1/authorize

and the access_token i am receiving is not bearer token. it looks like this

`712020-bb6123ee-85a1-4bd8-96ba-2a2ed38cfb1d:-DtVDWGbmPV4eFdY:q5CHAPNpSQGLgw1eOtYULJ3fW6GjseEb` (scrambled)

note: My MCP connection is working fine with this token. I can access all JIRA tools without any issues. The only issue is how do i figure out which account was authorized.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Rovo Atlassian Intelligence
Rovo
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2026 Atlassian
    Privacy Policy Notice at Collection Terms Security