Is it possible to authorize an app using OAuth 2.0 with admin key?

Gabriel Sanches
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
May 10, 2024

Hello,

I'm trying to authorize my user using OAuth 2.0 with my app, the objective is to access private documents in Confluence, since I'm a administrator.

https://support.atlassian.com/confluence-cloud/docs/bypass-access-restrictions-on-a-page-with-admin-key/#Use-admin-key-to-access-a-restricted-page

I can do it on the UI, but couldn't find a way to access private document through pages API. Is it possible to authorize the app during OAuth 2.0 flow with administrator permissions?

1 answer

0 votes
Humashankar VJ
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
May 11, 2024

Hi @Gabriel Sanches 

Even with the "ADMIN" scope in OAuth, the app's permissions are ultimately regulated by the user's own permissions on Confluence.

An app cannot succeed to the full admin capabilities of a user through OAuth.

As OAuth 2.0 is designed for secure, user-controlled access.

Granting admin permissions directly through the authorization flow would avoid this security model

More information can be found out here - Confluence OAuth 2.0 provider API (atlassian.com)

Hope this helps - Happy to help further!!
Thank you very much and have a great one!
Warm regards

 

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events