Question
Can I use a Service Account with a scoped API token for the Jira integration, and what are the required configurations if my token is being marked as "invalid"?
Answer
Yes, Service Accounts and scoped API tokens are fully supported for the Jira integration..
If you are receiving a "credentials are invalid" error when using a scoped token, it is usually because specific mandatory scopes are missing. To ensure full functionality—including syncing projects, pushing changes, and linking items—you must configure your token with the following 9 granular scopes:
Manage scopes
-
manage:jira-project -
manage:jira-configuration -
manage:jira-data-provider
Read scopes
-
read:account -
read:jira-user -
read:jira-work -
read:me
Write scopes
-
write:jira-work
Important Note:
-
While granular scopes work, please be aware that the more restrictive the permissions, the higher the risk that certain data may fail to sync or break due to permission depth.
-
If you continue to see "invalid" errors with these scopes enabled, ensure the Service Account itself has the necessary project-level permissions within your Jira instance.