Skip to main content
Jira Logo

Jira

Project management and issue tracking platform

✅ Ready📖 Documentation Available

Overview

Jira is the leading project management and issue tracking platform developed by Atlassian. It’s widely used by software development teams, IT departments, and business teams to plan, track, and manage work through customizable workflows.

Jira Data Structure

The connector understands Jira’s hierarchical data model: Projects → Issues → Comments/Attachments
EntityDescription
ProjectsTop-level containers for organizing work (e.g., Engineering, Marketing)
IssuesWork items including bugs, tasks, stories, epics, and custom types
CommentsDiscussion threads attached to issues
AttachmentsFiles, images, and documents attached to issues
Users & GroupsTeam members and their group memberships
Project RolesRole-based access control for project permissions

What Gets Synced

The connector indexes the following content for AI-powered search:
  • Issue Content: Summary, description (with rich text/ADF support), status, priority, labels
  • Issue Metadata: Reporter, assignee, created/updated dates, custom fields
  • Comments: Full comment threads with author information
  • Attachments: All file types attached to issues (PDFs, images, documents)
  • Permissions: Project-level and issue-level access controls are preserved

Configuration Guide

Getting Started

The Jira connector provides access to your organization’s Jira Cloud workspace through OAuth 2.0 (3LO) authentication. It syncs projects, issues, comments, attachments, and user information, enabling comprehensive project management search and access across your Jira content.

Authentication Method

The Jira connector uses OAuth 2.0 with 3-legged OAuth (3LO) for secure authentication. This allows users to authorize the connector to access Jira data on their behalf while maintaining fine-grained control over permissions through Atlassian’s granular API scopes.
OAuth 2.0 (3LO) is the recommended authentication method by Atlassian. It provides secure, token-based access without requiring users to share their passwords.

⚠️ Critical User Configuration Requirement

Each user in your organization must set their email address to be visible in order for PipesHub to correctly assign permissions and make records visible to them.

Why Email Visibility Matters

PipesHub uses email addresses to match Jira users with their permissions. If a user’s email is hidden:
  • PipesHub cannot identify the user when syncing permissions
  • Records will appear invisible to that user even if they have proper access in Jira
  • The user won’t be able to see any content they should have access to

How to Configure Email Visibility

Every user must complete these steps in their Atlassian account:
  1. Click on your profile picture in the top right → Select “Account Settings”
Access User Profile Settings
  1. Select the “Profile and visibility” tab
  2. Scroll down to the “Contact” section
  3. In the “Who can see this?” dropdown for your email address, select either:
    • “Anyone” (recommended), OR
    • “Your organization”
Set Email Visibility to Organization
DO NOT select “Only you and admins” - this will prevent PipesHub from accessing your email address and matching you to permissions, making all records invisible to you.
📖 Official Documentation: Update your profile and visibility settings
This is a per-user setting that must be configured by each individual user in your organization. Administrators cannot change this setting for other users. We recommend communicating this requirement to your team during the Jira connector rollout.

Step 1: Access Atlassian Developer Console

  1. Navigate to the Developer Console:
    Go to developer.atlassian.com/console/myapps/ and sign in with your Atlassian account that has administrator access to your Jira workspace.
  2. View Your Apps: You’ll see the “My apps” page where you can create and manage OAuth 2.0 integrations.
Atlassian Developer Console - My Apps

Step 2: Create a New OAuth 2.0 Integration

  1. Click the “Create” button in the top right corner
  2. Select “OAuth 2.0 integration” from the dropdown menu
  3. Fill in the application details:
    • Name: Enter a meaningful name (e.g., “PipesHub Jira Connector”)
    • Check the box to agree to Atlassian’s developer terms
  4. Click “Create” to proceed
Create OAuth 2.0 Integration Form
OAuth 2.0 (3LO) integrations use rotating refresh tokens by default, which improves security by limiting token validity and enabling automatic detection of refresh token reuse.

Step 3: Review Application Overview

After creation, you’ll be taken to the app overview page. This page displays:
  • App ID: Your application’s unique identifier
  • Distribution status: Whether the app is shared publicly
  • Permissions: API scopes configured for the app
  • Authorization: OAuth 2.0 (3LO) authorization settings
Use the left sidebar to navigate between Permissions, Authorization, and Settings sections.
Application Overview Page

Step 4: Configure OAuth 2.0 Authorization

  1. In the left sidebar, click “Authorization”
  2. Find “OAuth 2.0 (3LO)” in the authorization types list
  3. Click “Add” to enable OAuth 2.0 authorization for your app
Add OAuth 2.0 Authorization
  1. Set the Callback URL:
    • You need to enter the redirect URI provided by PipesHub
    • To get this URL, open PipesHub in another tab, navigate to SettingsConnectors, find the Jira connector, and click “Configure”
    • Copy the Redirect URI shown in the configuration dialog:
PipesHub Jira Configuration - Copy Redirect URI
  1. Paste the copied Redirect URI into the Callback URL field in Atlassian Developer Console
  2. Click “Save changes”
Add Callback URL in Atlassian
The callback URL must match exactly between Atlassian Developer Console and PipesHub configuration. Any mismatch will cause authentication to fail.

Step 5: Add API Permissions

  1. In the left sidebar, click “Permissions”
  2. You’ll see a list of available Atlassian APIs
  3. Add scopes for both User identity API and Jira API
Add API Scopes

User Identity API Scopes

Click “Add” next to User identity API and select the following scope:
ScopeDescription
read:accountView user profiles (required for user identification)
User Identity API Scopes
The offline_access scope is automatically included when you configure OAuth 2.0 (3LO). It enables refresh tokens for scheduled synchronization to work when users are not actively logged in.

Jira API Scopes

Click “Add” next to Jira API. You’ll see two tabs: “Classic scopes” and “Granular scopes”. You need to configure scopes from both tabs.
Classic Scopes
First, select the “Classic scopes” tab and add the following scopes:
ScopeDescription
read:jira-workRead Jira project and issue data, search issues, attachments, worklogs
read:jira-userRead Jira user information (usernames, emails, avatars)
Jira Classic Scopes
The connector uses only read-only classic scopes. It does not require any write or manage permissions. These two scopes provide broad access to Jira projects, issues, and user data.
Granular Scopes
Next, select the “Granular scopes” tab and add the following read permissions for more fine-grained access control:
ScopeDescription
read:user:jiraView user details
read:group:jiraView groups and group members
read:avatar:jiraView user and project avatars
read:audit-log:jiraRead audit logs (for detecting deleted issues)
read:application-role:jiraRead application roles
read:project-role:jiraRead project roles and role assignments
Jira API Granular Scopes
The connector uses a combination of Classic and Granular scopes for full functionality. Classic scopes (read:jira-work, read:jira-user) provide the primary data access, while Granular scopes enable specific features like user lookup, group membership resolution, audit log access for deletion detection, and project role permissions.

Step 6: Get OAuth 2.0 Credentials

  1. In the left sidebar, click “Settings”
  2. Scroll down to the “Authentication details” section
  3. Copy the following credentials:
    • Client ID: Your app’s unique identifier
    • Secret: Your app’s client secret (click the copy button)
OAuth 2.0 Credentials
Store the Client ID and Client Secret securely. The secret can be regenerated if needed, but you’ll need to update your PipesHub configuration with the new value.

Step 7: Configure Connector in PipesHub

  1. Return to the PipesHub Jira configuration dialog (if you closed it, navigate to SettingsConnectors and click “Configure” on the Jira connector)
  2. The configuration dialog has two steps:
    • Step 1: Authentication - Enter OAuth credentials
    • Step 2: Sync Settings - Configure synchronization
  3. Verify the Redirect URI displayed matches the callback URL you configured in Atlassian Developer Console (Step 4)
  4. Enter your OAuth 2.0 credentials:
    • Application (Client) ID: From Step 6
    • Client Secret: From Step 6
    • Atlassian Domain: Your Jira instance URL (e.g., https://your-domain.atlassian.net)
Enter OAuth Credentials in PipesHub
  1. Click “Save Auth Settings” to save auth setting

Step 8: Authorize the Connection

  1. After saving the configuration, click “Authenticate” from the Quick Actions panel
  2. You’ll be redirected to Atlassian’s authorization page
  3. Select your Jira site from the dropdown menu
Choose Jira Site
Important: Authorize using the same email address as your PipesHub account. Using a different email will cause permission issues on the PipesHub platform.
  1. Review the permissions being requested by the connector
  2. Click “Accept” to grant access
Accept OAuth Permissions
The authorization page shows all the Jira and User permissions your connector will have. Review these carefully before accepting to ensure they align with your data access requirements.
  1. You’ll be redirected back to PipesHub with a success message
  2. The connector status will update to show “Reauthenticate”
Connector Authenticated Status

Step 9: Enable and Configure the Connector

  1. After successful authentication, click “Enable Sync” to activate the connector
  2. A configuration dialog will appear with two sections:
    • Filters - Control what data is synced
    • Sync Settings - Configure synchronization schedule
Enable Jira Connector

Sync Filters

Sync filters determine which content is downloaded from Jira. Data excluded by sync filters is never downloaded.
Jira Filters Configuration
Available Sync Filters:
  1. Project Keys - Filter by Jira projects
    • Operator: In (include only) or Not In (exclude)
    • Selection: Choose from a searchable dropdown list of all your Jira projects
    • The dropdown displays project names with their keys (e.g., “Engineering (ENG)”)
    • Type to search and filter projects by name or key
    • Select multiple projects as needed
The project list is dynamically fetched from your Jira workspace. You don’t need to manually enter project keys - simply search and select from the dropdown.
  1. Modified Date - Filter by last modification date
    • Operators: Is After, Is Before, or Is Between
    • Use case: Sync only recently updated issues (e.g., issues modified in the last 6 months)
  2. Created Date - Filter by creation date
    • Operators: Is After, Is Before, or Is Between
    • Use case: Sync only newly created issues or exclude legacy tickets

Indexing Filters

Indexing filters control what synced data gets processed for AI search. All data is synced, but only enabled content types are indexed.Available Indexing Filters:
  • Index Issues (default: enabled) - Include issue content (description and comments) in search
  • Index Issue and Comment Attachments (default: enabled) - Include attachments from issues and comments in search
Comments are stored as part of the issue content (not as separate records). When “Index Issues” is enabled, both issue descriptions and comments are indexed together.
Example Configurations:
  • Sync only Engineering project: Project Keys → Operator: In, select “Engineering” from dropdown
  • Exclude archived projects: Project Keys → Operator: Not In, select archived projects from dropdown
  • Recent issues only: Modified Date → Operator: Is After, Date: 2024-06-01
  • Index issues but not attachments: Disable “Index Issue and Comment Attachments” toggle
Filters can be configured during initial setup or modified later. Changes to filters will take effect on the next sync.

Sync Settings

Configure your synchronization preferences:
  1. Sync Strategy: Choose between “Scheduled” or “Manual”
  2. Sync Interval: Choose how often to sync (default: 60 minutes)
Configure Sync Strategy
Scheduled sync runs automatically at the specified intervals, keeping your data up-to-date without manual intervention. Manual sync requires you to trigger synchronization on-demand.

Save and Activate

  1. Click “Save” to save your configuration and enable the connector
  2. The connector will verify credentials and begin initial synchronization
  3. Wait for the status to show “Disable Sync”
  4. Monitor the Indexing Progress to track sync completion

Supported Features

The Jira connector syncs the following data from your Jira Cloud workspace:
  • Projects: All accessible projects with their configurations and permission schemes
  • Issues: Full issue content including summary, description, status, priority, and custom fields
  • Comments: All comments on issues with author information
  • Attachments: Files attached to issues (images, documents, etc.)
  • Users: User profiles and account information
  • Groups: User groups and memberships
  • Project Roles: Role assignments for project access control
  • Permissions: Project permissions and issue-level access controls

Troubleshooting

Common Issues

Invalid client credentials error:
  • Verify Client ID and Client Secret are correct
  • Ensure you copied the full values without extra spaces
  • Check that the OAuth app is active in Atlassian Developer Console
  • Regenerate the secret if necessary and update PipesHub
Callback URL mismatch error:
  • Ensure the Redirect URI in PipesHub exactly matches the callback URL in Atlassian
  • Check for trailing slashes or protocol differences (http vs https)
  • Update both configurations to use the same URL
Authorization failed:
  • Verify you’re signing in with an account that has Jira access
  • Ensure your Jira site is selected during authorization
  • Check that all required API scopes are configured
No data syncing:
  • Verify the connector status shows “Active”
  • Check that the authenticating user has access to Jira projects
  • Ensure projects are not restricted or archived
  • Review sync logs for specific error messages
Token expired or sync stopped:
  • OAuth 2.0 tokens may expire based on Atlassian’s policies
  • Disable and re-enable the connector to re-authenticate
  • Check if the OAuth app is still active in Developer Console
Permission denied for specific issues:
  • Verify the authenticating user has read access to the issues
  • Check project permissions in Jira
  • Review issue security schemes that may limit access
Missing comments or attachments:
  • Verify indexing filters are enabled for comments and attachments
  • Check that the user has permission to view comments/attachments
  • Ensure attachment size limits are not exceeded
If you modify OAuth application settings in Atlassian Developer Console (Client ID, Secret, callback URL, or scopes), you must update the configuration in PipesHub and re-authorize the connection.

Connector Workflow

The Jira connector follows a structured synchronization process to ensure all data is accurately synced and permissions are properly maintained.

Sync Overview

The run_sync method executes a complete synchronization cycle in a specific order:
StepFunctionData SyncedPurpose
1_fetch_users()UsersSync all Jira users with their profiles
2_sync_user_groups()GroupsSync groups and user-group memberships
3_fetch_projects()ProjectsFetch projects (filtered if configured)
4_sync_project_roles()RolesSync project role assignments
5_sync_project_lead_roles()Lead RolesAssign project lead permissions
6_sync_project_issues()IssuesSync issues, comments, and attachments
7_handle_issue_deletions()DeletionsDetect and remove deleted issues

Full Sync vs Incremental Sync

The connector automatically determines whether to perform a full or incremental sync:Full Sync occurs when:
  • First-time synchronization (no sync checkpoint exists)
  • Sync filters have been modified since last sync
  • Manual full sync is triggered
Incremental Sync occurs when:
  • A valid sync checkpoint exists
  • Filters haven’t changed
  • Uses JQL queries with updated >= "last_sync_time" to fetch only changes

User & Group Synchronization

  1. User Fetch: Retrieves all users from Jira with their account IDs, emails, and display names
  2. Group Sync: Fetches all groups and their member lists
  3. Membership Mapping: Creates user-to-group relationships for permission resolution

Project Synchronization

  1. Project Fetch: Retrieves projects (filtered by project keys if configured)
  2. Permission Scheme: Extracts project permission schemes for access control
  3. Role Assignment: Syncs project-specific roles (Admin, Developer, Viewer, etc.)
  4. Lead Roles: Assigns project lead permissions to designated users

Issue Synchronization

For each project, the connector:
  1. Builds JQL Query: Constructs query with date filters and project scope
  2. Batched Fetching: Retrieves issues in batches (default: 100 per request)
  3. Content Processing:
    • Parses issue description (ADF format → Markdown with embedded images)
    • Extracts metadata (status, priority, labels, etc.)
  4. BlockGroup Structure: Creates hierarchical content structure:
    • Description BlockGroup (index=0): Contains issue description with inline attachments
    • Comment Thread BlockGroups: Each thread gets its own BlockGroup with parent_index=0
    • Comment Blocks: Individual comments stored as Blocks within their thread BlockGroup
  5. Attachment Processing: Maps attachments to their correct location (description or specific comments)
  6. Permission Assignment: Applies project and issue-level permissions
Comments are stored as Blocks within the issue’s BlocksContainer (not as separate records). This enables efficient threaded comment organization and ensures comments are deleted automatically when the parent issue is removed.

Deletion Detection

The connector uses Jira’s Audit Log API to detect deleted issues:
  1. Queries audit log for ISSUE_DELETE events since last sync
  2. Identifies deleted issue keys from audit records
  3. Removes issue records from the index
  4. Comments are automatically deleted with the issue (stored as Blocks within the issue)

Checkpoint Management

After each successful sync:
  • Stores the latest issue update timestamp as checkpoint
  • Records current filter configuration to detect changes
  • Per-project checkpoints enable resumable syncs on failures

FAQ

AspectJira ConnectorJira Toolset
PurposeSync and index Jira data for searchEnable agents to perform actions in Jira
Data FlowOne-way (import data into PipesHub)Two-way (read and write via API)
When to UseQuery/search issues, projects, commentsCreate issues, update tickets, add comments
Example: Use Jira Connector to search and retrieve existing ticket information. Use Jira Toolset to let agents create new issues or update ticket status.
There are three common causes:
  1. Email mismatch - The email used during connector authentication doesn’t match your PipesHub account email. This causes permission issues preventing you from accessing synced data.
    • Fix: Reconfigure the connector and authenticate using the same email as your PipesHub account.
  2. Records show in “All Records” but not in search - Documents display in the All Records section but don’t appear in search query results.
    • Fix: Verify sync filters in the connector settings and ensure indexing has completed. Check that the data matches your search query criteria.
  3. Data not yet indexed - The connector is still syncing or hasn’t completed the initial indexing process.
    • Fix: Go to Settings > Connectors, check the sync status, and wait for indexing to complete.
The initial sync duration depends on the size of your Jira workspace:
Workspace SizeEstimated Time
Small (< 1,000 issues)1-5 minutes
Medium (1,000 - 10,000 issues)5-15 minutes
Large (10,000 - 50,000 issues)15-45 minutes
Enterprise (50,000+ issues)45+ minutes
Tip: Use project filters to sync only the projects you need, significantly reducing initial sync time.
No, this connector is designed exclusively for Jira Cloud.Jira Server and Jira Data Center (on-premise deployments) use different authentication mechanisms and APIs. If you need support for on-premise Jira, please contact our support team to discuss options.
The most common causes are missing scopes or selecting the wrong Jira site during consent. Re-run authentication, ensure the required Jira and User scopes are granted, and pick the correct site when prompted.
Yes. When creating a Jira connector, the admin has the option to apply filters and select specific Jira projects for indexing. This allows you to limit the scope of indexed content to only the projects that are relevant to your organization’s needs.

Ready to Get Started?

Connect your Jira workspace to PipesHub in just a few minutes. Follow the step-by-step guide above to enable organization-wide project and issue search across all your Jira content.