I'm using Jira server where we have a Tempo plugin, I wonder if it's possible to restrict the POST "option" via API.
I need to give someone access to read all our work logs...but if I'm doing it by API token, then that person will be able to write data....which we don't want.
Any other suggestions are welcome.
Hi @Albert ,
I don't think you can do this dircetly with Tempo (there is no option to restrict API calls), however since you're on Jira Server you can manage this at the reverse proxy level : you will be able to restrict what IP address for example can reach a specific URL, like jira.company.com/rest/tempo-timesheets/ or even what methods are available (POST, GET, etc).
This would most likely be done by your network or system admin team.
Let em know if this helps,
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events