I need to verify if http basic authentication is enabled on a particular jira instance. If I run createmeta calls against the REST api I get 401 unauthorized errors, which leads me to believe that http basic is disabled since these same curl calls work against another jira instanse I have access to and I can log in using a browser.
What's the easiest way to confirm in the jira configuration that http basic authentication has been disabled?
If you see this response header:
WWW-Authenticate: Basic realm="protected-area"
Then you know HTTP Basic authentication is enabled.
As far as I know, there is no way to turn off HTTP Basic authentication in JIRA. You would only be able to achieve this by installing a custom Seraph authenticator in Confluence (eg. to enable single sign-on in your JIRA instance, for example).
Oops! Sorry, I've just realised there is a mistake in my answer. You need to run curl -v http://jira-url?os_authType=basic
The parameter on the end is important in order to make Seraph challenge you for basic authentication. Sorry for the confusion and sorry I didn't pick up on this earlier! Hope I didn't waste too much of your time.
Badges are a great way to show off community activity, whether you’re a newbie or a Champion.Learn more
Hi Atlassian Community! My name is Shana, and I’m on the Jira Software team. One of the many reasons this Community exists is to connect you to others on similar product journeys or with comparabl...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs