Is there any solutions to restrict rest pai for some JIRA users ?
Or to monitor the rest activity other than using the http login file ?
Thanks
Dear @QuentinB,
restrict the API: either on or off.
But for monitoring, you have a chance. There are some real time log file analyzer. There you configure a pattern and then they throw an alert when found.
Nagios can do such things - but there are other products, too.
So long
Thomas
You can't turn the Jira REST access off - Jira itself uses it.
You could try restricting by headers in your networking (i.e. when it comes from Jira or a server running an allowed integration, grant access)
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
@Nic Brough -Adaptavist-, you are so right! That was last in 6.4.14 possible. But who on earth would really like to disable the REST API? That's the main feature of Jira ;)
@QuentinBNic is right. You cannot turn it off in Jira. But you can restrict the specific API URLs and let localhost requests pass through within a proxy in front of Jira. This would also mean, that you could disable some of the REST calls, only.
The side effect - logging will be inclusive.
So long
Thomas
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
perfect thanks for your answer !
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.