Can we have an User , by which we can configure an application link in JIRA and that user should not be able to login to JIRA by JIRA Login Screen

i know this point that to configure applicaion link a user should have the ADMIN permission to JIRA but is there any way so that we can prevent this user to login to JIRA by JIRA login screen as we have so many confidential projects in JIRA and if any employee from our organization came to know the password for this user anyhow then there will be a big problem so we want to user which can be used to Login by application link and should not be able to login by Login screen of JIRA, is there any mechanism we can do that. Thanks Avdhesh

No. They can log in. They can't change admin settings without being authenticated, so it allows loing. This does sound very much like a broken requirement. Why do you want this?

Thanks for reply Nic, As stated i am afraid if the credentials for this user is leaked any how then there is a possibility to leak our confidential data to our customers as we use this account to link our External Customer Facing JIRA and Internal Organization JIRA. Thanks Avdhesh

No, sorry, not wanting to give admin to other people is absolutely right. What I don't understand is the requirement to change application links without logging in. Application links should change rarely and should only be updated by Administrators that understand them. Your desire to let other people do it is a massive security risk even if you implemented what you're suggesting.

Hi Nic, I am Administrator to both the JIRA instances, and i will user my login credentials to configure application Link, but in Oath section authentication we dont use our personal credentials to configure application link, So i will login with My User Profile and configure the application link with the service Account created to serve the purpose, Our both JIRA Instances has the diffrent User Base. so is there any way to prevent this service account to login to JIRA from JIRA login screen.? Thanks Avdhesh Chauhan

That does not explain what the requirement is. Configuring application links is something that should only be done by proper JIRA administrators. Letting someone else configure them would be a security hole. I don't understand *why* you want to do this. Log in as yourself and configure the link. You don't need or want a service account to do that.

Well Avdhesh - not only that specific user that you are trying to configure . But any other user - if the credentials are exposed , anybody would login , I think the justification to your requirement lacks logic :-)

I just can't see a need for an account to do this one single piece of configuration work. Your admins should do it.

yeah thanks for your help :)