REST API Authentication in Atlassian using Custom Provider

Enhancing API Security for Jira REST APIs with the OAuth/API Token plugin will let you authenticate any application (Jira, Confluence, Bitbucket) APIs using any third-party OAuth/OIDC provider or API Tokens. The app supports Azure AD, Keycloak, Okta, AWS Cognito, Google, Github, Slack, Gitlab, Facebook, and any Custom Provider.

Atlassian provides REST APIs to perform several operations such as Create Page, Delete Page, Add Comments, Create Space, etc. However, it supports only two authentication methods for REST APIs:

1. Basic Authentication
2. Using OAuth 1.0

The Enhance API Security for Jira REST APIs with OAuth/API Token plugin allows you to use any third-party OAuth 2.0 provider/ OpenID connect to authenticate REST APIs of any application (Jira, Confluence, Bitbucket). Here we will go through a guide to configure Custom Provider.


Download And Installation



  • Log into your Jira instance as an admin.
  • Navigate to the settings menu and Click Manage Apps.
  • Click Find new apps or Find new add-ons from the left-hand side of the page.
  • Locate Enhance API security for Jira REST APIs with OAuth/API Token app.
  • Click Try free to begin a new trial, or buy now to purchase a license.
  • Enter your information and click Generate License when redirected to MyAtlassian.
  • Click Apply License.

1: Configure the Rest API plugin

  • After installing the app, click on Configure to configure the plugin.
  • Select the Authentication type and navigate to the OAuth/OIDC tab, then click on Configure.
  • From the drop-down select JWT.
  • Enter the Public Key / Certificate and Introspection Endpoint and click on Continue.
  • Enter the Client ID and attribute value against which you will receive the username in response.
  • Save the settings.
    • Setup Bulk User Management fo Jira, Bulk action management to inactivate deactivate users
  • Now navigate to the Global Settings tab.
  • Here you will have to Enable the Authentication through Enable REST API Authentication and click on Save.
    • Setup Bulk User Management fo Jira, Bulk action management to inactivate deactivate users


Free Trial

If you don't find what you are looking for, please contact us at support-atlassian@miniorange.atlassian.net or raise a support ticket here.