Permissions required for GitHub for Atlassian
By granting the GitHub for Atlassian app access, you are providing the following authorizations to your GitHub and Jira accounts:
Jira permission scopes
Read, write, and admin access for development information: This includes branches, commits, and pull requests.
GitHub permission scopes
Repository Permissions
Permission scope | Why the app needs it |
|---|---|
Read-only access to actions | This permission enables access to the |
Read-only access to code scanning alerts/security events | To receive Github code scanning alerts in Jira, the app needs read permissions for security events. The app will listen to |
Read-only access to deployments | To see build and deployment information in Jira, the app needs read permissions for deployments. This allows it to listen to the webhook
|
Read-only access to metadata | As a mandatory requirement by GitHub, all apps have read-only metadata access by default. This is to provide access to a collection of read-only endpoints with metadata for various resources. These endpoints do not provide sensitive private repository information. Read-only metadata permissions are used for the following webhook:
|
Read and write access to work items and pull requests | This permission powers Smart Commit actions and allows Jira URLs to unfurl in comments. Unfurling refers to the app detecting Jira work item keys in square brackets like Work items: Read and write work item permissions are used for the following webhooks:
Pull requests: Read and write pull request permissions are used for the following webhooks:
Notes:
|
Read and write access to content (code) | Read permissions sync development information to Jira for the following webhooks:
Write permissions allow branch creation from a work item’s dev panel. Note: for GitHub Enterprise integration (where the user owns the GitHub app) "Write" permission is optional. When not provided, the "Create Branch" feature will not function. |
Organization permissions
Permission scope | Why the app needs it |
|---|---|
Read-only access to members | To determine if you have admin access to a GitHub organization. |
Events Our App Subscribes To
Event | When this event occurs |
|---|---|
Code scanning alert /security events | Code Scanning alert created, fixed in branch, or closed |
Commit comment | A commit comment is created |
Create | A Git branch or tag is created |
Delete | A Git branch or tag is deleted |
Deployment status | A deployment is created |
Work item comment | Activity related to a work item or pull request comment |
Work items | Activity related to a work item |
Pull request | Activity related to pull requests |
Pull request review | Activity related to pull request reviews |
Push | One or more commits are pushed to a repository branch or tag |
Repository | Activity related to a repository |
Workflow run | When a GitHub Actions workflow run is requested or completed |
Have more questions about permissions? Check out our FAQ documentation. If you can’t find the answer you’re looking for, feel free to raise an issue or contact our support team. We're here to help.
Was this helpful?