Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

JIRA Service Desk SSO (oAuth)

Jesse Reitsma
Jesse Reitsma April 5, 2017

Hello,

We're looking for a way to login to JIRA Service Desk from our own custom customerpanel.
So when our customer logs in to our custom customerpanel, they will see a link to Service Desk.
Once they click that link, they should be redirected to Service Desk and be logged in.

The userbase for the customerpanel is our own, not JIRA's.
Are there any ways to accomplisch this? For example with oAuth 2.0?

I hope you guys can help me out.

Edit: We're using JIRA Server (hosted)

Regards,
Jesse

Answer
Watch
Like # people like this
4237 views

5 answers

3 votes
sarel botha
sarel botha January 30, 2019

I've created an Authenticator that works using JWT. It automatically adds a user if the user does not exist already. It is pretty easy to get it going. You can get it here: https://github.com/sjbotha/jira-jwt-authenticator/

Reply
0 votes
Guido Leenders
Guido Leenders October 10, 2020

There is a long thread on this on https://jira.atlassian.com/browse/JSDCLOUD-630. Bottom line as of October 2020:

  • when less than 5000 users Access might work for Jira customers 
  • Or create your own service desk user interface
  • switch to Freshdesk or Zendesk
Reply
0 votes
Lars Olav Velle
Lars Olav Velle
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 19, 2017

Hello Jesse!

Have a look at our Kerberos/SAML plugin.

With Kerberos, your internal users are automatically logged in. Customers and mobile devices can benefit from SSO with SAML.

There is no need for any modification of your JIRA/Service Desk installation other than installing the add-on!

https://marketplace.atlassian.com/plugins/no.kantega.kerberosauth.kerberosauth-plugin/server/overview

Reach out to us at SSO@kantega.no, and we are hppy to help!

 

Reply
0 votes
Jesse Reitsma
Jesse Reitsma April 7, 2017

Can I do something like this with Crowd?

View More Comments
Bruno Vincent
Bruno Vincent
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 20, 2017

Yes, Crowd could be an option but as far as I can read from your particular context it sounds like a a more complex option than customising Seraph. What is your custom userbase? (LDAP? Database?)

Like
Reply
0 votes
Bruno Vincent
Bruno Vincent
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 5, 2017

Hello Jesse,

You can actually implement SSO between your custompanel and Jira with Atlassian Seraph (aka the authentication framework on which Jira is based).

You will need to edit seraph-config.xml so as to tell Jira to redirect unauthenticated users to the customerpanel authentication form and write your own custom authenticator to provide them with Single Sign-On.

View More Comments
Jesse Reitsma
Jesse Reitsma April 5, 2017

Thank you for your answer, Bruno.

I don't have any expierence with Java.
Do you know how much code is involved?
Is it only the piece of code on the following page:
https://docs.atlassian.com/atlassian-seraph/latest/sso.html ?

Thanks in advance,
Jesse

Like
Bruno Vincent
Bruno Vincent
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 20, 2017

Hi Jesse,

Sorry for the delay in replying. Looks like I didn't get the notification.

Yes, that's pretty much it.

In Jira's case, you will need to extend JiraSeraphAuthenticator (which extends  DefaultAuthenticator itself) as explained on this page: https://confluence.atlassian.com/kb/single-sign-on-integration-with-the-atlassian-stack-794495126.html

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events