Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

OAuth 3LO Access Token Returns 401 "Unauthorized; scope does not match" for Jira Software APIs

Hemadri
Hemadri July 9, 2025

 

I am unable to access Jira Software APIs using OAuth 3LO despite having what appear to be the correct scopes. The token works for platform APIs but fails for all Jira Software endpoints.

Environment:
- Jira Cloud Instance: [REDACTED]
- Authentication Method: OAuth 3LO (Authorization Code Flow)
- OAuth App Client ID: [REDACTED]

Current OAuth Scopes Granted:
- read:jira-work
- read:board-scope:jira-software
- read:board-scope.admin:jira-software
- read:sprint:jira-software
- read:jira-user
- write:jira-work
- manage:jira-webhook
- offline_access

API Test Results:

WORKING APIs:
- GET /oauth/token/accessible-resources → 200 OK
- GET /rest/api/3/myself → 200 OK

FAILING APIs:
- GET /rest/agile/1.0/board → 401 "Unauthorized; scope does not match"
- GET /rest/agile/1.0/project → 401 "Unauthorized; scope does not match"



GET https://api.atlassian.com/ex/jira/{cloudId}/rest/agile/1.0/board
Authorization: Bearer [valid_oauth_token]
Accept: application/json

 

Actual Behavior:
All Jira Software APIs return 401 "Unauthorized; scope does not match" while platform APIs work correctly with the same token.

Request:
Please clarify the correct OAuth scopes needed for Jira Software APIs and confirm if there are additional requirements beyond scopes (such as product licensing or user permissions).

Answer
Watch
Like Be the first to like this
178 views

1 answer

0 votes
Anandhi Arumugam _Cprime_
Anandhi Arumugam _Cprime_
Community Champion
July 9, 2025

Hi @Hemadri Welcome to the community!

Could you check if you have Product access to Jira software? If yes, please check the board settings to ensure that the board is accessible via UI?

 

View More Comments
Hemadri
Hemadri July 9, 2025

Hi @Anandhi Arumugam _Cprime_ 
Thanks for response.

Yes jira software enabled, accessible via UI
Issue is happening only with OAuth 3LO , PAT tokens works fine without issues

Like John Funk likes this
Anandhi Arumugam _Cprime_
Anandhi Arumugam _Cprime_
Community Champion
July 9, 2025

Can you try adding read:jira-software and read:project:jira to your OAuth scopes? After this, re-authorise and see if that fixes the issue?

Like John Funk likes this
Hemadri
Hemadri July 9, 2025

 

Those scopes not available for jira software only these are available for app

read:board-scope.admin:jira-software
read:board-scope:jira-software
read:epic:jira-software

read:issue:jira-software

read:sprint:jira-software

read:source-code:jira-software

read:feature-flag:jira-software

read:deployment:jira-software

read:build:jira-software

read:remote-link:jira-software

Like John Funk likes this
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security