We have connect apps in Jira and Confluence, and we would like to start migrating and use Forge, we want to start migrating the Jira part first.
We have some question related to security:
We want our Forge app to be able to communicate with our Confluence connect app.
Can we allow Forge to communicate with our Confluence connect app, by adding:
permissions: external: fetch: backend: - https://my-confluence-connect-app.com
Are these permissions supposed to be used for such cases?
We intend to use JWT authentication, is it possible to store the secret key as an env variable in Forge?