OAUTH Impersonation issue with Application links

Hi All,

We recently upgraded our Atlassian applications (Jira, Confluence, Bitbucket and Crucible). We have Application links created between each application using OAuth Impersonation and everything appears to work good. 

The issue we face is that whenever navigating through the Application links, you are still required to login to each system individually?

Is there a confi or something we are missing? Any ideas?


1 answer

This widget could not be displayed.
Boris Berenberg Community Champion Aug 03, 2017

This is a feature, not a bug. This is exactly how oAuth is supposed to work. Impersenation means that the application can perform an action as the user in the remote application.

The logins you are mentioning should only be occuring once per application combo. So JIRA -> Confluence only once. Then Fisheye -> Confluence again. And JIRA -> Fisheye again. But if you go to any of those again, they should maintain the connection.

What you're looking for is called Trusted Applications and is a very poor security model. I believe that long term it will actually be completely removed from newer versions of the tools.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Tuesday in Jira

What modern development practices are at the heart of how your team delivers software?

Hey Community mates! Claire here from the Software Product Marketing team. We all know software development changes rapidly, and it's often tough to keep up. But from our research, we've found the h...

102 views 1 2
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you