Require Personal Access Tokens for user actions (create branch/pull request)

Background

The Git Integration for Jira app allows users of integrations (examples: GitLab, GitHub, etc) to create branches and pull requests from within the Jira issue. By default the operation will be performed by the integration user that is used for indexing.

Objective

For teams looking to maintain user attribution - Jira administrators can require that individual Jira users provide personal access tokens to perform actions (like creating a branch or pull request in Jira using their git service account - rather than the integration account).

Supported integrations

User attribution is supported in the following special integrations in Git Integration for Jira Cloud:

  • GitHub.com

  • GitHub Enterprise

  • GitLab.com

  • GitLab self-managed

  • Microsoft Azure DevOps

  • Microsoft Visual Studio Team Services (VSTS)

  • Microsoft Team Foundation Server (TFS)

  • AWS CodeCommit

Instructions

To enable/disable the Require User PAT setting for all repositories within an integration:

  1. Navigate to Manage Git repositories.

  2. Add a new integration or edit existing integration's settings.

  3. Locate the Require User PAT setting.

  4. Check the box to require PAT option.

  5. Click Update.

What will Jira users see?

  1. Once the Jira administrator requires Personal Access Tokens - your Jira users will be presented with a message that setup is required.

     

  2. Following that link - the user is taken to a prompt in the View all repositories screen to enter their Personal Access Token (PAT) for the service (GitHub, GitLab, etc).
    Instructions: Creating Personal Access Tokens

     

  3. With the Personal Access Token saved - the user will now see the following:

PATs were introduced with TFS 2017 and newer.  TFS 2013 and TFS 2015 do not support PATs.  If the repository setting Require User PAT property is set to ON, the users will not be able to create/delete branches and pull requests.

Personal Access Tokens are saved per integration by individual Jira users app. Examples shown above are for the Create branch action; Create pull request is the same. The same token is used for Create branch and Create pull request.

Jira users must have the View Development Tools permission in the context of a Jira project to view content from the Git Integration for Jira app.





1 Logo owned by GitLab Inc used under license