Hi everyone,
Is it good practice to use the main JIRA account solely for REST API and maintenance purposes, while using a separate personal account for my activities as an admin, user, manager, etc.?
I would love to hear examples of how other small companies manage this and what is considered good practice.
I’ve found it very simple to use REST API with basic auth and the main account. It seems that ONLY the main account works for this, so it would make sense to separate the main account from everything else and not use it as an agent or a user.
Thanks for your insights!
what do you mean by "Main Account"?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Right - the API Token respects the user's permission. If you need access to everything and anything per API and you are low on licenses, it makes sense to use one technical Account for all.
However, API Tokens respect the user's permissions. So from a security point of view it makes sense to have multiple accounts for multiple use cases and only give them permissions for what they really need. Having one account might imply that you need to share the API Token with multiple people. I wouldn't recommend that.
Whether it's a personal or technical Account makes no difference aside from a traceability standpoint. Again - a pro for having multiple accounts so you know you did what - even if you only have someone being responsible for a technical account.
So: It really depends on what you are doing specifically and how high your (or your company's) need for security is.
By the way: you can always change who's Org Admin, Billing and technical contact - so there isn't really a "Main Account" at least not in Atlassian speech.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thank you @Rebekka Heilmann _viadee_ , this is very helpful. We had an issue because we thought the "main" account needed to provide its own token to delegate API usage to another user. Thanks to your explanation, we now understand how it actually works. Cheers!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Glad I could help. Just a side note: There is a dedicated Usermanagement API on Organization Level. You can create an API Token directly from the Admin page to access that API. The Token is not User bound in this case.
For Product APIs you always use the User API Tokens as explained above :)
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.