Access denied for OAuth2.0 application

GiacomoCattelan · July 31, 2024, 10:04am

Hi All,
We need to develop an internal application that connects to the ticketing portal.

Given the documentation, we decided to start using OAuth 2.0 (3LO) authentication as indicated. We followed the steps at the following link:

https://developer.atlassian.com/cloud/jira/platform/oauth-2-3lo-apps/#implementing-oauth-2-0–3lo-

The application was created on the portal developer.atlassian with my user, so even if it is not published, I should have the ability to authorize an application created by me.

However, I have problems with the application authorization step as exposed at the step:

https://developer.atlassian.com/cloud/jira/platform/oauth-2-3lo-apps/#1–direct-the-user-to-the-authorization-url-to-get-an-authorization-code

In particular, Jira returns to me that I do not have the ability to authorize the application as highlighted by the following screen; could you provide us with assistance on this? → see image attached

Thanks for your availability, Giacomo

ibuchanan · July 31, 2024, 11:12am

Welcome to the Atlassian developer community @GiacomoCattelan,

Maybe you could share the URL you have constructed from authorization?

If you are simply exploring, I recommend operating the OAuth flow with a tool that knows OAuth already. For example, here’s a way you can do it on the command-line:

When you are coding your app, you’ll want to use a OAuth library. I wouldn’t consider the Atlassian documentation a complete specification because there is already a standard spec for OAuth 2.0.

MarianBenat · August 1, 2024, 6:04pm

I have the same problem.

I would like to allow our customers to login with Atlassian Account to our application hosted on our server…

So i have created new APP in develoepr portal… and when i redirect to user to login with that… /authorize endpoint ( I CANT PUT LINK HERE…)

i am getting this error screen with tryinng to login with our “CUSTOMER account”.

However… i am able to login with my develoepr account.

HOw to login with customer atlassian account if they dont have their own JIRA?

ibuchanan · August 1, 2024, 6:15pm

Welcome to the Atlassian developer community @MarianBenat,

When you first create the app in the developer console, it will not be enabled for sharing. You can change the option on the developer console, if you want other users to be able to access the app.

But that’s 1 problem inside a bigger problem:

Using Atlassian’s OAuth 2.0 for login is not a supported use case. Furthermore, it is intended that OAuth 2.0 should provide access to users who are already customers in Jira. Or perhaps I misunderstood what you are trying to accomplish.

MarianBenat · August 1, 2024, 6:24pm

Yes. I create ticket here:

Please… if you are willing to continue there… thanks

GiacomoCattelan · August 2, 2024, 6:48am

Hi,

I am exploring the creation of authentication using Postman as a tool to test OAuth 2.0 authentication. The API call being made is as follows:

GET https://auth.atlassian.com/authorize?
client_id=a12o....&
scope=read%3Aservicedesk-request&
redirect_uri=https%3A%2F%2Foauth.pstmn.io%2Fv1%2Fcallback&
response_type=code&
prompt=consent&
audience=api.atlassian.com

From the browser side, the result is the following calls, as shown in the attached image.

If you need further details or clarifications, let me know!