Table Of Contents

  1. Docs
  2. Atlassian Confluence and JIRA

Atlassian Confluence and JIRA

Configuring Atlassian Confluence and JIRA to authenticate user access using Globus Auth and the OpenID protocol.

Globus Auth implements a standard OpenID Connect (OIDC) service accesible using an existing OpenID Authentication add-on for Confluence and JIRA. This external OpenID authentication may be used for unprivileged user access. For privileged adminstrative access Confluence and JIRA require the administrator to use an internal password.

Before you can start

Login to Confluence or JIRA as an administrator.

Install the plug-in

  1. Navigate to “Administration -> Atlassian Marketplace -> Find new add-ons” and search for the “OpenID Authentication” add-on for Confluence or JIRA.
_images/jira-openid-marketplace.jpg
  1. Install the OpenID Authentication add-on from Pavel Niewiadomski.
  2. Obtain and configure a full license or trial license.

Configure the OpenID plug-in

  1. Navigate to “Administration -> Atlassian Marketplace -> Manage add-ons”.
  2. Under OpenID Authentication for Confluence (or JIRA) select the “Configure” option.
  3. Under Providers select “Add Provider”.
_images/jira-openid-providers.jpg

In “Add Authentication Provider”:

  1. Select provider “OpenID Connect/OAuth 2.0”.

  2. Enter:

    Name “My Login” (or whatever label you want users to see on the login window).

    Provider URL “https://auth.globus.org”.

  3. Copy the generated Callback URL to place in the Redirects field when registering your Confluence or JIRA application with Globus Auth in the following step.

  4. In a new Incognito Browser Window follow the application registration instructions in the Globus Auth Developer’s Guide.

  1. Copy the newly generated Client Secret for the Confluence or JIRA application registered in Globus Auth.
_images/GlobusApplications.jpg
  1. Return to the Confluence or JIRA provider registration window.
  2. Paste the Client Secret generated for the Confluence or JIRA application registered in Globus Auth above.
  3. Enter the Scope “openid email profile”.
  4. Leave “Allowed Domains” blank.
  5. Select Authentication prompt “consent”.
  6. Click “Add Provider”.
  7. Make sure “Automatically Create Users” has the desired value.

Test the plug-in

From a new Incognitor Browser Window access your Confluence or JIRA service and authenticate using “Your Login”.

Drupal
Jupyter
© Copyright 2017, Globus. Created using Sphinx.