We’re developing a JIRA Cloud add-in similar to our currently shipping Confluence Cloud add-in.
In Confluence we are able to save attachments to the page using the Confluence attachments REST APIs and AP.request with the the proper headers:
But no matter what we do on JIRA Cloud with the JIRA specific attachment create REST APIs called with a POST using the AP supplied request object, I get back a failed POST with an XSRF error.
As suggested some other posts on the forum, I tried “no-check” for the header, even tried walking the all-debug.js calls, but nothing helps.
I thought that this is exactly what the bridging library was supposed to allow to work.
This is absolutely different behavior from Confluence Cloud and prevents us from shipping our add-on.
The same attachment REST APIs work just fine with essentially the same sequence on JIRA Server.
I was told that Dave Meyer might have some insight on this.
Cheers and thanks,