The current state of OAuth2 and Jira REST API is not helpful.
Your documentation states: " Building a non-Connect integration ? If you are building an integration that doesn’t use Connect, we recommend that you use OAuth 2.0 authorization code grants (3LO) for apps over other authentication methods, such as basic authentication and OAuth 1.0a. See Security for other integrations."
However, two of the most important APIs to be able to build an effective integration with Jira, this one (creating webhooks) and Createmeta are not yet implemented. So it’s impossible to know which fields are required to create an issue, and impossible to create a webhook to creative integrations that are useful.
Until issues like this are fixed you should frankly have a big warning with the suggestion with all of the APIs that do not currently work with OAuth2 and the REST API.
What is your recommended advice? Switch to Oauth 1.0a?