Block user API token access
By default, your organization's user API token access is set to allow. This means external users can make API calls with a user API token to access products in your organization.
When you block user API token access for external users, they are unable to use a token to access products through a product API, even if they previously used a token to access them.
When an external user makes a call to a product API, we let them know an admin blocked the token and to contact them to find out why.
To block user API token access:
Go to admin.atlassian.com. Select your organization if you have more than one.
Select Security > External users.
Select the policy you want to modify: External user policy or Test policy.
Choose API token access for external users.
Select Block.
Click Update to save your changes.
To allow user API token access:
Go to admin.atlassian.com. Select your organization if you have more than one.
Click on Security > External users.
Choose API token access for external users.
Select Allow.
Click Update to save your changes.
Was this helpful?