Archive

This app has been archived

You may still get support information and download previous versions of this app. Learn more.

Support

To check known issues (or if you want to file one), view this app's issue tracker.

To learn more about the app, you should:

Read the documentation.

This is a supported app, so you may contact the vendor (or support contact) for help:

Utoolity
https://utoolity.net/
contact@utoolity.net

Description

Federated AWS access for Atlassian users

Add long-term AWS security credentials (IAM users) once, configure AWS access for Atlassian groups and Confluence apps with temporary credentials and fine grained permissions via IAM Policies thereafter (Identity Broker)

Single sign-on (SSO) to the AWS Management Console

Access AWS resources directly via links from the AWS Resources macro and/or the AWS Management Console Login menu.

REST API for temporary AWS Security Credentials

Expose AWS Connectors from your apps to retrieve user scoped temporary AWS security credentials (Token Vendor).

Also, retrieve Amazon Elastic Container Registry (ECR) authentication credentials.

More details

+++ NOTE: This app is deprecated for technical reasons – learn about alternatives. +++

Enable your teams with seamless access to AWS resources and integrate AWS into your Confluence DevOps workflows:

Empower your Atlassian users – provide single sign-on (SSO) enabled links to the AWS Management Console from the AWS Resources menu
Share your AWS resources – use the AWS Resources macro and AWS Resources blueprint to document resources and accounts with SSO enabled deep links to the AWS Management Console
Secure your AWS credentials – store long-term AWS security credentials with industry standard encryption without exposing them to users or apps
Relieve your AWS administrators – forget about distributing or revoking AWS credentials and never worry about team composition or employee leave: AWS access follows group membership changes once you grant fine-grained permissions via IAM policies
Integrate your Atlassian apps – use the REST API to grant users SSO enabled access to AWS resource

Version history

CollapsedExpanded2.14.0Confluence Data Center 6.12.0 - 7.12.02020-10-20Adds IAM role for EC2 credentials provider
Download
Version 2.14.0 • Released 2020-10-20 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.14 Release Notes for details – noteworthy changes:
- Provide AWS security credentials via an IAM role for EC2/ECS – opt-in via a feature flag and gain convenience and flexibility by providing AWS security credentials via your Amazon EC2 instance or Amazon ECS and AWS Fargate tasks
Release 2.14.0
- IFAWS-301 (UAA-49) – As an administrator, I want to provide AWS credentials via an IAM role for EC2 so that I do not need to add an access key
- IFAWS-1376 (UAA-435) – Fix GET not returning the JSON field when connector scope has not been configured
- IFAWS-1438 (UAA-462) – Fix insufficient credentials validation of access key dialog
CollapsedExpanded2.14.0Confluence Server 6.12.0 - 7.12.02020-10-20Adds IAM role for EC2 credentials provider
Download
Version 2.14.0 • Released 2020-10-20 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.14 Release Notes for details – noteworthy changes:
- Provide AWS security credentials via an IAM role for EC2/ECS – opt-in via a feature flag and gain convenience and flexibility by providing AWS security credentials via your Amazon EC2 instance or Amazon ECS and AWS Fargate tasks
Release 2.14.0
- IFAWS-301 (UAA-49) – As an administrator, I want to provide AWS credentials via an IAM role for EC2 so that I do not need to add an access key
- IFAWS-1376 (UAA-435) – Fix GET not returning the JSON field when connector scope has not been configured
- IFAWS-1438 (UAA-462) – Fix insufficient credentials validation of access key dialog
CollapsedExpanded2.13.1Confluence Data Center 6.8.0 - 7.12.02020-06-30Adds AWS security credentials dialog; enables restricted administrator role
Download
Version 2.13.1 • Released 2020-06-30 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.13 Release Notes for details – noteworthy changes:
- Generate and copy temporary AWS security credentials on demand – use the AWS Security Credentials dialog to validate the IAM policy configuration and provide credentials to other tools and services for the configured duration
- Delegate connector management to restricted administrators – empower restricted administrators via a feature flag
Release 2.13.1
- IFAWS-824 – As an administrator, I want to enable connector management for restricted administrators so that I can delegate responsibilities
- IFAWS-1234 (UAA-391) – As a user, I want to get temporary AWS credentials so that I can provide them to other contexts
- IFAWS-1357 (UAA-433) – Fix NullPointerException when using PUT/POST with an insufficient JSON payload
- IFAWS-1358 (UAA-434) – Fix WebApplicationException when using PUT/POST without payload or non JSON content-type
CollapsedExpanded2.13.1Confluence Server 6.8.0 - 7.12.02020-06-30Adds AWS security credentials dialog; enables restricted administrator role
Download
Version 2.13.1 • Released 2020-06-30 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.13 Release Notes for details – noteworthy changes:
- Generate and copy temporary AWS security credentials on demand – use the AWS Security Credentials dialog to validate the IAM policy configuration and provide credentials to other tools and services for the configured duration
- Delegate connector management to restricted administrators – empower restricted administrators via a feature flag
Release 2.13.1
- IFAWS-824 – As an administrator, I want to enable connector management for restricted administrators so that I can delegate responsibilities
- IFAWS-1234 (UAA-391) – As a user, I want to get temporary AWS credentials so that I can provide them to other contexts
- IFAWS-1357 (UAA-433) – Fix NullPointerException when using PUT/POST with an insufficient JSON payload
- IFAWS-1358 (UAA-434) – Fix WebApplicationException when using PUT/POST without payload or non JSON content-type
CollapsedExpanded2.12.1Confluence Data Center 6.4.0 - 7.12.02020-06-16Adds regions af-south-1 / eu-south-1; updates vulnerable dependencies
Download
Version 2.12.1 • Released 2020-06-16 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.12 Release Notes for details – noteworthy changes:
- Consolidate IAM policy management – use managed IAM policies in addition to (or replacing) the former inline IAM policies to ease IAM policy management
- Audit credentials usage via AWS CloudTrail – use the the SSO enabled audit link on a connector to click through to AWS CloudTrail and inspect the most recently used AWS API based on the underlying credentials
Release 2.12.1
- IFAWS-1287 – Unify quickstart portability pattern towards AWS guidance
- IFAWS-1335 – Surface new AWS region Africa (Cape Town) / af-south-1
- IFAWS-1337 – Surface new AWS region Europe (Milan) / eu-south-1
- IFAWS-1357 (UAA-433) – Fix NullPointerException when using PUT/POST with an insufficient JSON payload
- IFAWS-1358 (UAA-434) – Fix WebApplicationException when using PUT/POST without payload or non JSON content-type
- IFAWS-1366 – Update vulnerable dependencies
CollapsedExpanded2.12.1Confluence Server 6.4.0 - 7.12.02020-06-16Adds regions af-south-1 / eu-south-1; updates vulnerable dependencies
Download
Version 2.12.1 • Released 2020-06-16 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.12 Release Notes for details – noteworthy changes:
- Consolidate IAM policy management – use managed IAM policies in addition to (or replacing) the former inline IAM policies to ease IAM policy management
- Audit credentials usage via AWS CloudTrail – use the the SSO enabled audit link on a connector to click through to AWS CloudTrail and inspect the most recently used AWS API based on the underlying credentials
Release 2.12.1
- IFAWS-1287 – Unify quickstart portability pattern towards AWS guidance
- IFAWS-1335 – Surface new AWS region Africa (Cape Town) / af-south-1
- IFAWS-1337 – Surface new AWS region Europe (Milan) / eu-south-1
- IFAWS-1357 (UAA-433) – Fix NullPointerException when using PUT/POST with an insufficient JSON payload
- IFAWS-1358 (UAA-434) – Fix WebApplicationException when using PUT/POST without payload or non JSON content-type
- IFAWS-1366 – Update vulnerable dependencies
CollapsedExpanded2.12.0Confluence Data Center 6.4.0 - 7.12.02019-10-02Supports managed IAM policies; adds region me-south-1
Download
Version 2.12.0 • Released 2019-10-02 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.12 Release Notes for details – noteworthy changes:
- Consolidate IAM policy management – use managed IAM policies in addition to (or replacing) the former inline IAM policies to ease IAM policy management
- Audit credentials usage via AWS CloudTrail – use the the SSO enabled audit link on a connector to click through to AWS CloudTrail and inspect the most recently used AWS API based on the underlying credentials
Release 2.12.0
- IFAWS-457 – As an administrator, I want to select a managed rather than an inline policy so that I can consolidate IAM policy management
- IFAWS-1235 – As an administrator, I want links to applicable service logs so that I can audit integrations via the AWS console
- IFAWS-1162 – Drop support for Confluence 6.1
- IFAWS-1173 – Drop support for Confluence 6.2
- IFAWS-1230 – Surface new AWS region Middle East (Bahrain) / me-south-1
CollapsedExpanded2.12.0Confluence Server 6.4.0 - 7.12.02019-10-02Supports managed IAM policies; adds region me-south-1
Download
Version 2.12.0 • Released 2019-10-02 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.12 Release Notes for details – noteworthy changes:
- Consolidate IAM policy management – use managed IAM policies in addition to (or replacing) the former inline IAM policies to ease IAM policy management
- Audit credentials usage via AWS CloudTrail – use the the SSO enabled audit link on a connector to click through to AWS CloudTrail and inspect the most recently used AWS API based on the underlying credentials
Release 2.12.0
- IFAWS-457 – As an administrator, I want to select a managed rather than an inline policy so that I can consolidate IAM policy management
- IFAWS-1235 – As an administrator, I want links to applicable service logs so that I can audit integrations via the AWS console
- IFAWS-1162 – Drop support for Confluence 6.1
- IFAWS-1173 – Drop support for Confluence 6.2
- IFAWS-1230 – Surface new AWS region Middle East (Bahrain) / me-south-1
CollapsedExpanded2.11.0Confluence Data Center 6.1.0 - 7.12.02019-05-27Adds region ap-east-1
Download
Version 2.11.0 • Released 2019-05-27 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.11 Release Notes for details – noteworthy changes:
- Create deep links to the AWS Management Console from Jira – use the AWS Resource link remote issue link type to create deep links with optional single sign-on (SSO) to AWS resources in the AWS Management Console
- Use the AWS CodeCommit web repository viewer in Bamboo – use the AWS CodeCommit web repository viewer to click through to commits and diffs in the CodeCommit console
Release 2.11.0
- IFAWS-1044 – Drop support for Confluence 6.0
- IFAWS-1158 – Surface new AWS region Asia Pacific (Hong Kong) / ap-east-1
CollapsedExpanded2.11.0Confluence Server 6.1.0 - 7.12.02019-05-27Adds region ap-east-1
Download
Version 2.11.0 • Released 2019-05-27 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.11 Release Notes for details – noteworthy changes:
- Create deep links to the AWS Management Console from Jira – use the AWS Resource link remote issue link type to create deep links with optional single sign-on (SSO) to AWS resources in the AWS Management Console
- Use the AWS CodeCommit web repository viewer in Bamboo – use the AWS CodeCommit web repository viewer to click through to commits and diffs in the CodeCommit console
Release 2.11.0
- IFAWS-1044 – Drop support for Confluence 6.0
- IFAWS-1158 – Surface new AWS region Asia Pacific (Hong Kong) / ap-east-1
CollapsedExpanded2.10.3Confluence Data Center 6.0.1 - 7.7.42018-12-20Adds region eu-north-1
Download
Version 2.10.3 • Released 2018-12-20 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.3
- IFAWS-1062 – Surface new AWS region EU (Stockholm) / eu-north-1
CollapsedExpanded2.10.3Confluence Server 6.0.1 - 7.7.42018-12-20Adds region eu-north-1
Download
Version 2.10.3 • Released 2018-12-20 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.3
- IFAWS-1062 – Surface new AWS region EU (Stockholm) / eu-north-1
CollapsedExpanded2.10.2Confluence Data Center 6.0.1 - 7.7.42018-11-28Adds region us-gov-east-1
Download
Version 2.10.2 • Released 2018-11-28 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.2
- IFAWS-1039 – Surface new AWS region GovCloud (US-East) / us-gov-east-1
- IFAWS-1046 – Add validation for access key alias duplicate
CollapsedExpanded2.10.2Confluence Server 6.0.1 - 7.7.42018-11-28Adds region us-gov-east-1
Download
Version 2.10.2 • Released 2018-11-28 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.2
- IFAWS-1039 – Surface new AWS region GovCloud (US-East) / us-gov-east-1
- IFAWS-1046 – Add validation for access key alias duplicate
CollapsedExpanded2.10.1Confluence Data Center 6.0.1 - 7.7.42018-09-19Updates REST API with CRUD methods; increases connector retrieval performance
Download
Version 2.10.1 • Released 2018-09-19 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.1
- IFAWS-143 – As an administrator, I want to DELETE|POST|PUT an AWS connector so that I can automate configuration
- IFAWS-704 (UAA-262) – Expose long-term AWS credentials ID in AWS Connector resource
- IFAWS-885 – Add connector ID to AWS resource menu tooltip
- IFAWS-945 (UAA-327) – Address Active Object performance issues when using AO entity implementations
- IFAWS-1005 – Add more icons for supported and related AWS services
- IFAWS-1006 – Mark app as Data Center approved
- IFAWS-1008 – Fix license warning referring to 'plugin' rather than 'app'
- IFAWS-1009 – Fix internal server error on configuration page due to LicenseException: MISSING
CollapsedExpanded2.10.1Confluence Server 6.0.1 - 7.7.42018-09-19Updates REST API with CRUD methods; increases connector retrieval performance
Download
Version 2.10.1 • Released 2018-09-19 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.10 Release Notes for details – noteworthy changes:
- Manage credentials and connectors via the REST API 2.1
- Provision Identity Federation for AWS as a Data Center approved app
- Gain increased performance with large connector pools
Release 2.10.1
- IFAWS-143 – As an administrator, I want to DELETE|POST|PUT an AWS connector so that I can automate configuration
- IFAWS-704 (UAA-262) – Expose long-term AWS credentials ID in AWS Connector resource
- IFAWS-885 – Add connector ID to AWS resource menu tooltip
- IFAWS-945 (UAA-327) – Address Active Object performance issues when using AO entity implementations
- IFAWS-1005 – Add more icons for supported and related AWS services
- IFAWS-1006 – Mark app as Data Center approved
- IFAWS-1008 – Fix license warning referring to 'plugin' rather than 'app'
- IFAWS-1009 – Fix internal server error on configuration page due to LicenseException: MISSING
CollapsedExpanded2.9.3Confluence Server 5.10.0 - 7.1.22018-08-25Adds support for Bitbucket
Download
Version 2.9.3 • Released 2018-08-25 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.9 Release Notes for details - noteworthy changes:
- Support for Bitbucket Server
Release 2.9.3
- IFAWS-938 - Improve core vs. quickstart CloudFormation template onboarding UX
CollapsedExpanded2.8.4Confluence Server 5.9.1 - 6.15.102018-06-27Marked app as compatible with Confluence read-only mode
Download
Version 2.8.4 • Released 2018-06-27 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.8 Release Notes for details – noteworthy changes:
- Destination URL support in the AWS Management Console SSO API
Release 2.8.4
- IFAWS-936 – Mark app as compatible with Confluence read-only mode
- IFAWS-938 – Improve core vs. quickstart CloudFormation template onboarding UX
CollapsedExpanded2.8.3Confluence Server 5.9.1 - 6.15.102018-04-10Supports extended IAM role session duration; supports additional ECR regions
Download
Version 2.8.3 • Released 2018-04-10 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.8 Release Notes for details – noteworthy changes:
- Destination URL support in the AWS Management Console SSO API
Release 2.8.3
- IFAWS-890 – Surface support for additional ECR region us-gov-west-1
- IFAWS-906 – Add support for extended IAM role session duration
CollapsedExpanded2.8.2Confluence Server 5.9.1 - 6.15.102018-01-08Adds regions cn-northwest-1/eu-west-3; supports additional ECR regions
Download
Version 2.8.2 • Released 2018-01-08 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.8 Release Notes for details – noteworthy changes:
- Support for Atlassian Confluence
- Destination URL support in the AWS Management Console SSO API
Release 2.8.2
- IFAWS-855 – Surface support for additional ECR regions ap-south-1 and sa-east-1
- IFAWS-857 – Surface new AWS region China (Ningxia) / cn-northwest-1
- IFAWS-858 – Surface new AWS region EU (Paris) / eu-west-3
CollapsedExpanded2.8.1Confluence Server 5.9.1 - 6.15.102017-11-09Adds option to disable implicit connector visibility for administrators
Download
Version 2.8.1 • Released 2017-11-09 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.8 Release Notes for details – noteworthy changes:
- Support for Atlassian Confluence
- Destination URL support in the AWS Management Console SSO API
Release 2.8.1
- IFAWS-821 – Add option to disable implicit connector visibility for administrators
CollapsedExpanded2.8.0Confluence Server 5.9.1 - 6.15.102017-08-10Adds support for Confluence; adds destination URL support in SSO API
Download
Version 2.8.0 • Released 2017-08-10 • Supported By Utoolity • Paid via Atlassian • Commercial
See the Identity Federation for AWS 2.8 Release Notes for details – noteworthy changes:
- Support for Atlassian Confluence
- Destination URL support in the AWS Management Console SSO API
Release 2.8.0
- IFAWS-92 – As a user, I want federated AWS access in Confluence
- IFAWS-727 – Add destination URL support to AWS Management Console SSO API
- IFAWS-730 – As a user, I want to link AWS resources via a Confluence macro so that I can share deep links to the management console
- IFAWS-745 – As a user, I want a Confluence blueprint so that I can share deep links to the AWS management console
- IFAWS-746 – As a user, I want a Confluence page template so that I can share AWS resources
- IFAWS-747 – As a user, I want a Confluence page template so that I can document an AWS account