We have various automation and test scripts integrated with Jira (server version) using basic authentication. Obviously this may be a security concern since users/passwords can be passed in clear text is not using SSL.
Does SSL provide enough security such that passwords would be encrypted?
You can obfuscate using base 64 in Jira however decoding base 64 is easy also.
Is OAauth the only other way to integrate with the JIRA API for multiple user scripts?
Why is API Token only available for CLOUD based implementations? Is there any future update that will support this in SERVER based implementations?
API token is only available for Cloud as you have discovered, so currently it's only possible to authenticate using Basic or OAuth:
I know it has been requested in the past but wasn't implemented due to lack of traction. I've created a feature request below for this, so please feel free to vote on it and follow, as well as comment with your usage case:
In the meantime, you'll want to use either Basic or OAuth for your authentication purposes.
Learn how to use two new reports for next-gen projects in Jira Cloud: Cumulative flow diagram and Sprint burndown chart. Ivan Teong, Product Manager, Jira Software, demos the Cumulative ...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events