JIRA responds with "You have successfully authorised ‘ConsumerID’. Please close this browser window and click continue in the client." when setting oauth_callback=oob

We need to authenticate against a JIRA Server 8.13.10 instance that is not under our control. We are required to use OAuth authentication. JIRA Server only offers OAuth 1.0a authentication, not OAuth 2.0. We use a command line utility to retrieve an access token, which works fine against JIRA Cloud.

We set oauth_callback=oob when requesting the Request Token. After the user followed the link and authenticated the request, they are shown a page that only contains “You have successfully authorised ‘ConsumerID’. Please close this browser window and click continue in the client.” The verification code that we would expect is missing on that page.

Are we doing something wrong? Does JIRA Server not support out-of-band authentication?

This is essentially Oauth_callback not redirecting ressource owner's user agent, just for JIRA Server instead of JIRA Cloud.

2 Likes