Dear Atlassian community,
I am currently attempting to automate JIRA ticket creation through APIs, as an added feature of my web application I am developing. My question is related to security.
Using the API’s, JIRA basic authentication requires the user to offer their JIRA password. Is this information secure as it is being sent from my application server to JIRA? Do I need to ensure that my website has SSL certification for this to be secure, even though my application is only exists on the intranet of our company (only accessible by anyone who is connected to the Wifi). If I instead use JIRA’s Oauth option, will this be any better?