Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-78588

Allow Global Admins to Enable "Never Expire" Personal Access Tokens for Specific Users or Tokens

XMLWordPrintable

    • Icon: Suggestion Suggestion
    • Resolution: Unresolved
    • None
    • Personal Access Tokens
    • None
    • 1
    • 3
    • We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Summary

      Provide an option for global administrators to allow the creation of "Never Expire" (Eternal) Personal Access Tokens (PATs) for specific users or tokens, even when the global setting to disable such tokens is applied to the rest of the users.

      Expected Results

      Global administrators should have the ability to designate certain users who can create "Never Expire" tokens, ensuring that applications relying on these tokens can function without disruption while maintaining overall security and control over token generation for the rest of the user base.

      Ideally it would be possible for the admin to set specific tokens non-expiry via the Administering personal access tokens page.

      That is including the scenario where the following property is set to false:

      -Datlassian.pats.eternal.tokens.enabled

      Rationale

      By implementing this feature, Jira can maintain a balance between security and user needs. Some users or applications may have legitimate use cases for needing tokens that do not expire, and allowing administrators to selectively enable this feature would prevent misuse while supporting essential integrations.

              Unassigned Unassigned
              1edd59bb2c95 Mateus Gomes
              Votes:
              5 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: