Due to limitations with the Forge platform, CSUM-Cloud requires a privileged user email and API token to be set. Requirements for the permissions the Privileged User needs are listed in https://thepluginpeople.atlassian.net/wiki/spaces/CSUMC/pages/3545169923/App+Security+Scopes#Privileged-User-Permissions
Configuring privileged user credentials
| Info |
|---|
Currently, the privileged user will require Site Admin permission to allow Group create/delete requests, or Group membership changes. This is due to Group creation and Group membership REST APIs permissions being restricted to Site Admin only, due to https://support.atlassian.com/confluence-cloud/docs/manage-global-permissions/. |
Generate an API token for a valid User that has System Admin permissions. See https://support.atlassian.com/atlassian-account/docs/manage-api-tokens-for-your-atlassian-account/ for details on how to generate an API token.
In CSUM-Cloud, insert the user email and API token into the Global Settings page:
...
What happens if credentials are not configured?
...
This results in unauthorized requests, which cause errors when making requests to Confluence.
Due to this, when credentials are not configured, CSUM-Cloud will not be able to return space page content. Instead, the following message is displayed:
...
I have Admin permission, why does this need configuring?
The privileged user authentication is separate to the Admin permission access. Both are required to use CSUM-Cloud
The privileged user credentials are used to make requests using the CSUM-Cloud app to the relevant Confluence REST API endpoints when performing space operations (Create Group, Add user, etc).
The admin permission is used to gain access to view the app.
Please see https://thepluginpeople.atlassian.net/wiki/x/AQBNAQE for more information on Permission configuration.