What is necessary and suffient authentication for Jira - Stash application links?

Wayne Wylupski July 27, 2015

According to What are the Stash URLs that JIRA needs to access? Trusted application links are recommended for when the Stash uses Jira's user directories.  Yet, JIRA Development panel displays error even though other app is of correct version recommends using OAuth for application links, with the implication that Trusted will not give the required functionality.  (JIRA 6.3.15; Stash 3.10.2)

If Stash uses JIRA for its users, what is necessary and sufficient to link JIRA and Stash together?  Does it need both  Trusted and OAuth?  Just OAuth?  Or just Trusted?

1 answer

0 votes
gustavo_refosco
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
July 27, 2015

Hi Wayne,

It seems some confusion occurred from the Answers link you posted: that's actually a bit old, being from a time before the Development Panel was used, so in fact previously Trusted Applications could be used (when Source tab was used to display Stash information), but the Development Panel was made to work with OAuth.

That being said I'd recommend removing the Application Link and re-creating it, leaving it as default (which is with OAuth only enabled). Despite having the same users in JIRA and Stash I'd also recommend to not check the option "The servers have the same set of usernames", to avoid the OAuth configuration to use impersonation.

Regards,

Gustavo Refosco

Suggest an answer

Log in or Sign up to answer