Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Next challenges

Recent achievements

  • Global
  • Personal

Recognition

  • Give kudos
  • Received
  • Given

Leaderboard

  • Global

Trophy case

Kudos (beta program)

Kudos logo

You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.

View group

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Sign up for free Log in
Atlassian Community Hero Image Collage

Access the REST API as a specific user rather than an overall system

Beckah Sheeler
Beckah Sheeler Aug 01, 2017

So, right now, I am accessing the JIRA Rest API through my rails app.

If a user of my app wants change the "status" of an issue, I check to see if their associated JIRA user account is a member of groups with permissions to change that issue's status. 

For instance, if the JIRA username "Beckah" is part of the "jira-administrators" groups, they can change an issue's status from "In Progress" to "Complete".

My question is, is there a way to enforce these kinds of rules through Jira's rest API? In plain English, with a Rest PUT request, "User Beckah wants to move Issue NEM-11 to Complete" and see if it JIRA responds with an error or success based on Beckah's permissions to update that issue. 

Let me know if that makes any sense or if more details are needed.


Answer
Watch
Like Be the first to like this

1 answer

0 votes
Boris Berenberg - Atlas Authority
Boris Berenberg - Atlas Authority Aug 01, 2017

You need to use oAuth instead of basic auth in your rails app. You also need to support user impersination. https://developer.atlassian.com/cloud/jira/platform/jira-rest-api-oauth-authentication/

View More Comments
Beckah Sheeler
Beckah Sheeler Aug 01, 2017

Is there a specific tutorial on jira oauth user impersonation? can't find anything.

Like
Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you