API Token Authentication Confluence -Increased user security

for Confluence Server 7.1.1 - 8.8.1, Confluence Data Center 7.1.1 - 8.8.1 and more
152 installs

We no longer offer sales and support for server apps. You can stay connected by exploring the migration options to either the cloud or Data Center version of this app.

Increase security for Confluence REST API data connections from external services with API Tokens instead of username & password

YouTube's thumbnail image for the video.

Make your SSO environments better with API tokens

In SAML SSO environments, users often have no local passwords anymore. This makes connecting external scripts, services and apps difficult. With API tokens (Personal Access Token) users can now access 3rd party apps.

Permissions Model & Token Scoping

Group Based Permissions for tokens:

-Use

-Create

-Create on-behalf-of

-Read-only

Scoping applicable to individual tokens:

-Read & Write edits issues & tickets

-Read-only creates reports, dashboards, notifications & more

Practical Token Management

The token manager allows you to:

-Filter

-Revoke

-Create on behalf of

-Audit Logging

Free PoC & configuration support - schedule a session

More details

API Token Auth brings Personal Access Token to Confluence. Allow API tokens as a secure way of integrating Confluence w/ custom scripts & 3rd-party apps (i.e. Zapier, MS Flow, automate.io etc).

Give admins precise control over the API usage & solve the issue in SSO environments where users can’t use the API due to a lack of passwords.

Features:

  • Create Tokens per user & services
  • Revoke API Tokens anytime
  • Token Manager to filter/create tokens for all users
  • Permissions for who (users or groups) may create tokens & what scope (read or read-write)
  • Audit Logging
  • Restrict REST API requests by IP address & range
  • Disallow built-in basic authentication w/ username & pw for REST API connections
  • Works in all SSO environments
  • Compatible with user mgmt apps: SAML Single Sign-On, User Directory Sync, User Deactivator

We provide:

  • Business-class support & proven scalability for small & large enterprises
  • Trusted by top healthcare, government & finance firms

Try as well the Jira and Bitbucket versions

Privacy and security

Privacy policy

Atlassian's privacy policy is not applicable to the use of this app. Please refer to the privacy policy provided by this app's partner.

Partner privacy policy

Resources

Gallery

As a user, you can simply create an REST API Token & give it a recognizable name that describes the purpose of this Token.