Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Is it possible to restrict or monitor the JIRA rest actions ?

QuentinB
QuentinB
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 10, 2017

Is there any solutions to restrict rest pai for some JIRA users ?
Or to monitor the rest activity other than using the http login file ?
Thanks

Answer
Watch
Like Martin Hynek likes this
1306 views

1 answer

2 votes
Thomas Deiler
Thomas Deiler
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 1, 2018

Dear @QuentinB,

restrict the API: either on or off.

But for monitoring, you have a chance. There are some real time log file analyzer. There you configure a pattern and then they throw an alert when found.

Nagios can do such things - but there are other products, too.

So long

Thomas

View More Comments
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 1, 2018

You can't turn the Jira REST access off - Jira itself uses  it.

You could try restricting by headers in your networking (i.e. when it comes from Jira or a server running an allowed integration, grant access)

Like
Thomas Deiler
Thomas Deiler
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 1, 2018

@Nic Brough -Adaptavist-, you are so right! That was last in 6.4.14 possible. But who on earth would really like to disable the REST API? That's the main feature of Jira ;)

@QuentinBNic is right. You cannot turn it off in Jira. But you can restrict the specific API URLs and let localhost requests pass through within a proxy in front of Jira. This would also mean, that you could disable some of the REST calls, only.

The side effect - logging will be inclusive.

So long

Thomas

Like
Thomas Deiler
Thomas Deiler
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 5, 2018

Dear @QuentinB,

could you figure out my proposal? Do you need more help?

So long

Thomas

Like
QuentinB
QuentinB
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 5, 2018

perfect thanks for your answer !

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events