• Documentation
Products
Documentation
Resources
Atlassian Support
/
Security and access policies Resources
/
Control how users outside your organization access products
/
Edit external user security settings

Block user API token access

By default, your organization's user API token access is set to allow. This means external users can make API calls with a user API token to access products in your organization.

When you block user API token access for external users, they are unable to use a token to access products through a product API, even if they previously used a token to access them.

When an external user makes a call to a product API, we let them know an admin blocked the token and to contact them to find out why.

To block user API token access:

  1. Go to admin.atlassian.com and select your organization if you have more than one.

  2. Select Security > External users.

  3. Select the policy you want to modify: External user policy or Test policy.

  4. Choose API token access for external users.

  5. Select Block.

  6. Click Update to save your changes.

To allow user API token access:

  1. Go to admin.atlassian.com and select your organization if you have more than one.

  2. Click on Security > External users.

  3. Choose API token access for external users.

  4. Select Allow.

  5. Click Update to save your changes.

Still need help?

The Atlassian Community is here for you.
Ask the Community
CommunityQuestions, discussions, and articles