Jira app requesting new permissions in GitHub
Categories
(mozilla.org :: Github: Administration, task)
Tracking
(Not tracked)
People
(Reporter: cknowles, Assigned: cknowles)
Details
Attachments
(1 file)
|
548.93 KB,
image/png
|
Details |
Jira-New-Perms-20240911.png
Jira app is requesting Read-Only access to "Administration" (twice?)
with the following reasoning:
We’re updating permissions to enable new Atlassian Rovo functionality, and prepare for upcoming Github OAuth changes. These updates are optional if you only use the app to link Github data to Jira (like PRs, commits, and branches).
The orgs requested are:
- Mozilla
- Mozilla-Services
- Firefox-UX
- Mozilla-Mobile
- MDN
- Mozilla-IT
- MozillaSocial
- Mozilla-SRE-Deploy
@cknowles, approved. Looks like this already has an approval in https://github.com/MoCo-GHE-Admin/Approved-GHE-add-ons/blob/main/GitHub_Applications.md.
|
Assignee | |
Comment 2•6 months ago
|
||
The approval there is for the PREVIOUS permissions - this is a change of permission, hence the bug for security to look at. Please confirm that you aren't just repeating the old approval, and are are referring to the new permission set.
per practice, there doesn't need to be an update to the approval list unless there's a DENIAL of permissions, as that deeply complicates managing the apps.
Thanks for clarifying @cknowles and confirmed that I'm not just repeating the old approval. No concerns with the new permissions - new permission set is approved!
|
|
Assignee | |
Comment 4•6 months ago
|
||
And permissions are updated. Thank you.
Description
•