Hi All,
I have an situation , where i want an user who should be able to configure application link and that user should not be able to login to JIRA from JIRA login scree. if there is a way help will be greatly appreciated.
This is due to some security reasons we want this behavior to happen.
Thanks
Avdhesh Chauhan
To be able to configure an application link, a user must have administrative rights. If you have admin rights, you can log in.
So no.
I'm also curious - what sort of logic gets you to this requirement? It sounds like complete nonsense to me.
i know this point that to configure applicaion link a user should have the ADMIN permission to JIRA but is there any way so that we can prevent this user to login to JIRA by JIRA login screen as we have so many confidential projects in JIRA and if any employee from our organization came to know the password for this user anyhow then there will be a big problem so we want to user which can be used to Login by application link and should not be able to login by Login screen of JIRA, is there any mechanism we can do that. Thanks Avdhesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
No. They can log in. They can't change admin settings without being authenticated, so it allows loing. This does sound very much like a broken requirement. Why do you want this?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks for reply Nic, As stated i am afraid if the credentials for this user is leaked any how then there is a possibility to leak our confidential data to our customers as we use this account to link our External Customer Facing JIRA and Internal Organization JIRA. Thanks Avdhesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
No, sorry, not wanting to give admin to other people is absolutely right. What I don't understand is the requirement to change application links without logging in. Application links should change rarely and should only be updated by Administrators that understand them. Your desire to let other people do it is a massive security risk even if you implemented what you're suggesting.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Nic, I am Administrator to both the JIRA instances, and i will user my login credentials to configure application Link, but in Oath section authentication we dont use our personal credentials to configure application link, So i will login with My User Profile and configure the application link with the service Account created to serve the purpose, Our both JIRA Instances has the diffrent User Base. so is there any way to prevent this service account to login to JIRA from JIRA login screen.? Thanks Avdhesh Chauhan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
That does not explain what the requirement is. Configuring application links is something that should only be done by proper JIRA administrators. Letting someone else configure them would be a security hole. I don't understand *why* you want to do this. Log in as yourself and configure the link. You don't need or want a service account to do that.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Well Avdhesh - not only that specific user that you are trying to configure . But any other user - if the credentials are exposed , anybody would login , I think the justification to your requirement lacks logic :-)
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I just can't see a need for an account to do this one single piece of configuration work. Your admins should do it.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.