Hello Atlassian Community!
I am ananjan from miniOrange.
I'm excited to share with you some awesome new features we've added to our REST API plugin in the Atlassian Marketplace for Jira as well as Confluence. I want to make sure you're up to speed on all the cool things you can do with it, so let me give you a quick rundown!
When it comes to Atlassian Jira and Confluence, the usage of REST APIs is quite popular. These platforms provide a range of REST APIs, related to accessing and modifying stories, spaces, issues, etc.
It is essential to add other features on top of Jira and Confluence's own token-based API authentication mechanism to keep the system secure and regulate the usage among the users.
miniOrange REST API Authentication solution for Atlassian Data Center comes packed with a variety of powerful features.
The Use case:
Did you know that most Jira and Confluence admins use SSO solutions to manage their users' accounts? It's a convenient way for users to log into the application using their SSO credentials instead of remembering yet another username and password.
But when it comes to making API calls, things can get a little tricky. Users often have to use their local password, which isn't the most secure approach⚠️
That's why it's a good idea to have API requests authenticated by the same provider. This way, users can enjoy the same level of security and convenience they get with SSO for logging in
miniOrange REST API Authentication plugin allows you to authenticate the REST calls using the OAuth/OIDC provider by the means of the OAuth 2.0 Access token. The supported providers include Azure AD, Okta, Keycloak, GitHub, etc. You can also configure a custom provider.
The miniOrange REST API Plugin has an incredible range of features. Let's take a sneak peek 👀together and discover what it has in store for us!
- Enhance security with our Group-Based User Restriction
Control which set of users would be allowed to access the APIs based on their groups in Jira using the group-based restriction feature, thereby restricting the API access to all of the other groups.
You can also enable read-only permissions to certain groups. The users in such groups would only be able to make GET requests to the APIs.
You can restrict the API access to a certain IP address or range of IP addresses. This is particularly useful when API access is to be allowed only for a specific network.
- Integrating Scripts has never been this easy📄
This approach allows you to streamline your workflow and automate repetitive tasks, while still ensuring that your API tokens remain secure and protected from unauthorized access.
- Restrict Access to Public APIs:
Though most of the Jira APIs require authentication, some of them are public by default and can be accessed without authentication. To add an authentication layer on such APIs, you can utilize the Restrict Access to public APIs feature.
- Restrict Token Creation to Admins only:
You can enable this feature to allow only the admins to create tokens for themselves as well as other users. The users will receive their tokens at their email addresses present in the Jira directory.
Here, a record of all the REST calls is displayed. This includes the username, date, the request URI, the type of request, and the response status of the REST call. You can export the logs in CSV format.
So there you have it! 🙋♂️
miniOrange REST API plugin is a powerful tool that can help you unlock the full potential of your Atlassian suite.
Whether you're building integrations, automating workflows, or simply exploring new possibilities, REST API can make your life easier and your community more engaging. So go ahead and give it a try - we can't wait to see what you'll create!✌️
Reach out to us at atlassiansupport@xecurify.com or click here!
