elasticmachine
commented
1 year ago Pinging @elastic/security-external-integrations (Team:Security-External Integrations)
Open jamiehynds opened 1 year ago
elasticmachine
commented
1 year ago Pinging @elastic/security-external-integrations (Team:Security-External Integrations)
Our Jira integration is currently limited to Basic Authentication, using a Jira User Identifier and API Token.
As Basic Authentication is not as secure as Oauth, we've come across several users who are not permitted to use Basic Authentication and are thus prevented from using the integration. Atlassian also recommend using Oauth over Basic Authentication too.
Can we add the ability to authenticate to Jira's API via Oauth, which is supported by our httpjson input and on the Jira side. Relevant documentation for Oauth and Jira's API is available here: https://developer.atlassian.com/cloud/jira/platform/basic-auth-for-rest-apis/