Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to get consumer key for jira Oauth1

namdev k
namdev k September 5, 2015

Hi Every one,

 

I want to get access token using JIRA oauth1, I have gone through the documentation but unable to get how i will get consumer key.

Answer
Watch
Like # people like this
22669 views

6 answers

6 votes
ekairuz
ekairuz
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 14, 2017

I'm confused here.

The example you can use the consumer-key "hardcoded-consumer" along with the provided Public Key/ Shared secret key.

You mention you can instead generate public/private key.

 

To elaborate:

-The consumer key is made up and the service provider and the consumer both need to know it.

The private key and consumer key is used by the consumer

The public/shared key and the consumer key is used by the service provider

 ___________________________

So after a day of hacking at the provided java example I worked this out:

 

To come up with your own Consumer Key as well as using your own generated private and public keys, follow below.

 

------ Generate Keys ------

-Generate private key

openssl genrsa -out privkey.pem 2048

 

-Generate public key based off private key 

openssl rsa -pubout -in privkey.pem -out pubkey.pem

 

------ JIRA Admin/UI: ------

 

-Go to Jira Administration -> Applications -> Application links

(My test, as well as the provided java example is a server-side stand alone client app  i.e. doesnt respond to http/negotiate tokens so...)
-Ignore the fact that the thing attempts to connect to the link with which you create the app-link - it can be any url.

-Make up (and remember) any string value for a Consumer Key

-Copy the public key file content excluding the "-----BEGIN PUBLIC KEY-----" and "-----END PUBLIC KEY-----" as well as removing line breaks into the "Shared Secret" field.

(It might work leaving those in but I haven't bothered trying.)

 

-Set the Request Token URL, Access Token URL, and Authorize URL to the belowrespectively, substituting your Atlassian subdomain - provided you're using a hosted instance.

https://<my-hosted-jira>.atlassian.net/plugins/servlet/oauth/request-token

https://<my-hosted-jira>.atlassian.net/plugins/servlet/oauth/access-token

https://<my-hosted-jira>.atlassian.net/plugins/servlet/oauth/authorize

-Check "Create Incoming Link" and hit Continue

-On the next screen add the same Consmer Key you decided on above and copy the content of the public key you generated above as-is.

i.e. INCLUDING the "-----BEGIN PUBLIC KEY-----" , "-----END PUBLIC KEY-----", as well as the line breaks. and hit continue

 

------ Client Code Changes ------

Update provided example java client found at https://developer.atlassian.com/jiradev/jira-apis/jira-rest-apis/jira-rest-api-tutorials/jira-rest-api-example-oauth-authentication

-Update JIRAOAuthClient class CONSUMER_KEY constant (line 13) to the Consumer Key you decided on above.

-Update JIRAOAuthClient class CONSUMER_PRIVATE_KEY constant (line 14) to the private key. (I kept line breaks and BEGIN and END RSA PRIVATE KEY tags with hyphens etc.)

 

That code is a pretty good example of the dance.

_______________________________________________________________________

The part that was confusing me was the disconnect between the private and public key.

The client holds on to the private key (generated) and the consumer key (made up).

JIRA requires the consumer key (made up) but also the public key (generated with the private key) and JIRA needs no knowlege of the private key itself, hence it's called private.

Also if I manually go through the dance and hold on to the token and deploy it with my client app, I've read in places that the token lives forever and in others that it lives for a week.

It looks like on my hosted Confluence instance that the token is valid for 5 years.

To do the dance with confluence instead of JIRA, configure the application link in confluence administration, use the same above Request Token URL, Access Token URL, and Authorize URL for the service provider, but all UI admin/config should be done on Confluence and not JIRA. i.e: https://<my-hosted-jira>.atlassian.net/wiki. add the confluence context (in my case 'wiki') when visiting the admin/settings pages.

 

View More Comments
John Sibo
John Sibo January 5, 2018

Hey @ekairuz 

I'm following your steps -- can you help me understand the requirement for request token/ access token/ authorize URL?

For example, if my site is https://jira.test.com
will my request-token be https://jira.test.com.atlassian.net/plugins/servlet/oauth/request-token?

Appreciate your help!

Like
Reply
2 votes
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 7, 2015

Just to Clarify and clear all confusion here (https://developer.atlassian.com/jiradev/jira-apis/jira-rest-apis/jira-rest-api-tutorials/jira-rest-api-example-oauth-authentication
- For Consumer key and shared public key you can use Consumer key and public key as it is mentioned in link

Consumer key - "hardcoded-consumer"

Public Key/ Shared secret key

MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZDzGUGk6rElyPm0iOua0lWg84nOlhQN1gmTFTIu5WFyQFHZF6OA4HX7xATttQZ6N21yKMakuNdRvEudyN/coUqe89r3Ae+rkEIn4tCxGpJWX205xVF3Cgsn8ICj6dLUFQPiWXouoZ7HG0sPKhCLXXOvUXmekivtyx4bxVFD9Zy4SQ7IHTx0V0pZYGc6r1gF0LqRmGVQDaQSbivigH4mlVwoAO9Tfccf+V00hYuSvntU+B1ZygMw2rAFLezJmnftTxPuehqWu9xS5NVsPsWgBL7LOi3oY8lhzOYjbMKDWM6zUtpOmWJA52cVJW6zwxCxE28/592IARxlJcq14tjwYwIDAQAB

Or you could generate your public/private key using below method and update the client code accordingly

To generate a key pair execute:

openssl genrsa -out privkey.pem 2048

And execute:

openssl rsa -pubout -in privkey.pem -out pubkey.pem

To extract the public key. Both keys are in PEM format

create an Application Link 

Enter valid URL and click Continue even if there is no response on URL 

  • Select Application Type as Generic Application
  • Enter Consumer key as above - hardcoded-consumer
  • Enter Shared secret key as above
  • For other details like 
Hope this clear your doubt related to Consumer key and Shared secret key.

Taha 

View More Comments
Nicole Masarova
Nicole Masarova June 14, 2018

quesiton - what do you mean extract public key? and PEM format? and updating the client code? what do you update? I'm so sorry for all the quesitons. do you run this code in terminal? and do the pubic consumer keys and public shared secret work for private tools? are those two for the user to be entered everytime they login as their login or is it just for communication between the two websites to get the login where the user logs in with JIRA?

 

sorry and thanks

 

nicole

Like
Reply
1 vote
namdev k
namdev k September 5, 2015

Hi Taha,

 

I have gone through the given url. I have below mentioned concerns.

  1. What is application url.
  2. When I set application url as my callback url it show error. below is the error screen shot.jira.png
  3. When I press continue button it shows me form which contains many fields like , so i am unable to get and what would be the and .

 

Please provide me information.

 

 

View More Comments
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 5, 2015

Your Url seems to be https, so you to import your ssl certificate first into Java keystore before configuring application link. Taha

Like
namdev k
namdev k September 5, 2015

Hello sir i am using http.

Like yang yun likes this
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 5, 2015

Sorry sir but in screen I can see entered URL as https://mybeeps.com.

Like
Reply
0 votes
namdev k
namdev k September 5, 2015

Hello Taha,


 
I am unable to do below step since Oauth link is not present in my account. I am unable to login using sys admin. How I can get password of sysadmin? Is it for paid account?

 
  1. In the left-hand panel, under the title 'System', click the 'OAuth' link. The 'OAuth Administration' page will be displayed, showing a list of configured OAuth Consumers (if any exist).

 

View More Comments
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 7, 2015

Sorry, above URL Is for OLD JIRA version. OAuth Configuration comes under Application links itself. Original Document which I shared is the right one and all steps are mentioned there https://developer.atlassian.com/jiradev/jira-apis/jira-rest-apis/jira-rest-api-tutorials/jira-rest-api-example-oauth-authentication

Like
Reply
0 votes
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 5, 2015

Consumer key and public key both are part of OAuth process. Since your requirement is to configure App link between JIRA and External Application you refer below link for more information on Configuring OAuth Consumer

https://confluence.atlassian.com/display/JIRA042/Configuring+OAuth+Consumer+Information+for+JIRA

Taha

 

Reply
0 votes
Taha Khanzada
Taha Khanzada
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 5, 2015

Hi Namdev,

You can get Consumer key when you configure Application Link between Source and Destination Instance.

https://developer.atlassian.com/jiradev/jira-apis/jira-rest-apis/jira-rest-api-tutorials/jira-rest-api-example-oauth-authentication

Taha

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.