You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.
View groupJoin the community to find out what other Atlassian users are discussing, debating and creating.
So, right now, I am accessing the JIRA Rest API through my rails app.
If a user of my app wants change the "status" of an issue, I check to see if their associated JIRA user account is a member of groups with permissions to change that issue's status.
For instance, if the JIRA username "Beckah" is part of the "jira-administrators" groups, they can change an issue's status from "In Progress" to "Complete".
My question is, is there a way to enforce these kinds of rules through Jira's rest API? In plain English, with a Rest PUT request, "User Beckah wants to move Issue NEM-11 to Complete" and see if it JIRA responds with an error or success based on Beckah's permissions to update that issue.
Let me know if that makes any sense or if more details are needed.
You need to use oAuth instead of basic auth in your rails app. You also need to support user impersination. https://developer.atlassian.com/cloud/jira/platform/jira-rest-api-oauth-authentication/
Is there a specific tutorial on jira oauth user impersonation? can't find anything.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Connect with like-minded Atlassian users at free events near you!
Find an eventConnect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.
Host an eventYou're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.