Tagged: integration

Single Sign-on via Open ID Connect for Office 365, Google, Github and Bitbucket

SSO-2

MantisHub team is excited to announce the release of Open ID federation support for single sign-on! With our AuthHub plugin, we provide open ID connect with multiple identity providers.

What is Open ID Connect? Well, in a nutshell, our AuthHub plugin allows you to enable federation based authentication for single sign-on (SSO).  It also allows the auto-provisioning of users. So on valid authentication from your centralized identity provider, their MantisHub account is automatically created!

The following identity providers are supported with qualifying plans:

  • Azure AD (Office 365) – for Platinum volume plans (200, 300, 500, 1000 users)
  • Google / Google Suite – for Platinum volume plans (200, 300, 500, 1000 users) 
  • Github – for Gold plans and above
  • Bitbucket – for Gold plans and above

Check out our pricing page for details.

For companies that use any of the supported identity providers, switching over to SSO rather than your standard MantisHub username password adds a wide range of benefits.

For your users:

  • Users don’t have to manage yet another username and password as well as all the other advantages of SSO (single sign-on). So that means changing passwords just once! And if they are already logged in, just one click of a button will get into their MantisHub account!
  • User accounts can be auto-provisioned, hence, no need to coordinate with an administrator or have a lag between needing to access MantisHub and being able to access it.
  • User hashed credentials are not stored on MantisHub servers.

For your administrators and enterprise security:

  • Users authenticating via your enterprise identity providers will honour policies configured by the administrator in accordance with your enterprise security policies. For example, using FIDO devices, multi-factor authentication, password complexity, recurring password changes, protection against password spray attacks, etc. are all enforceable.
  • Once a user account is disabled, like when an employee leaves your company, administrators just need to revoke access in the one place and access to MantisHub and other federated SaaS applications access will be blocked.
  • AuthHub can be configured to lock down a list of users or domains to only permit login via your identity provider while allowing other users to log in with MantisHub standard login.
  • AuthHub plugin can be configured to allow auto-provisioning of users with your chosen access level on successfully sign-on.  This can be scoped to a configured list of email address domains.  This reduces manual work to onboard your team and reduces human error.

Want to get started? 

Check out MantisHub’s knowledge base articles for more information including configuration options:

And if you have questions, please reach out to our lovely MantisHub support team.

 

Announcing MantisHub REST API

API_image3

At MantisHub we have been working for a while on the new modern REST API for remotely accessing MantisHub data and configuration.  We now feel that we have enough coverage of MantisHub functionality to encourage our users to switch to it.  The API can provide a great way to integrate MantisHub into your build system, IDEs, test management systems, other SaaS applications, or your own applications.

Tools for using the API

Similar to what you expect from any REST API, you should be able to easily leverage it from your preferred language and platform.  You can get the documentation for the API from our API documentation.  The API is published via Postman API network enabling you to easily download Postman definitions for the API and start hacking away.  If you don’t already have Postman, you can download it from Postman website.  For command line access to MantisHub, we developed PowerShell module which can be used from Windows, Mac or Linux. You can also use curl which is available by default for Mac and Linux.

API Access

For accessing the API you will need to authenticate, and for this you will need to generate a secure API token from within your MantisHub rather than passing username password. Instructions for generating a token can be found in our KB article here. Remember to record your generated token since it will only be displayed on generation and once you exit out you won’t be able to get it again. You should, of course, have separate tokens for each of your integrations which provides you with the ability to manage each integration independently and associate such integrations with appropriate users or system accounts in your system (e.g. a build user account).

Individual users, as well as administrators, can generate tokens so make sure the user has access to the functionality needed for the integration. For example, if a token is generated for user Bob who is a reporter for Project X and you run an API call using the token to update an existing issue or delete it, the call will fail. The only time you won’t need a token is if you have anonymous access enabled for your MantisHub and the integration only requires read-only access.

API endpoint and Resources

The Endpoint for your API will be https://<yourmantishubname&gt;.mantishub.io/api/rest/

Here’s a sample request using curl from a terminal window for MantisHub name “softwaresolutions” using an API token that will get all issues that are unassigned:
curl --request GET \
  --url 'https://softwaresolutions.mantishub.io/api/rest/issues?filter_id=unassigned' \
  --header 'Authorization:h58meqhpRzLfnGRf6Pu8FA8thjWGvBFd'

Following are examples of API capabilities around entities defined in MantisHub:

  • Issues – Retrieve one issue, retrieve issues matching a filter, create, delete or update issues, add notes, tags, relationships, attachments, etc.
  • Projects – Get a full list of all projects accessible to logged in user along with project specific configuration like categories, versions, custom fields, etc.
  • Filters – Retrieve all filters definitions, a single filter definition, or delete filters.
  • Users – Create or delete users or retrieve your user information.
  • Configuration – Retrieve one or many configuration options.
  • Localized Strings – Retrieve one or many Local Strings.

The API library is still growing so be sure to refer to the documentation for the most up-to-date API definitions.

MantisHub has a wide range of features and customizations that allow you to get the cover most of your software bug tracking and general issue tracking needs. We also provide a number of plugins and integrations including chat apps Slack and Hipchat, Source control integrations with GitHub and Bitbucket, JetBrains, TestLodge for test case management and more. And now with the REST API… your options just got even bigger!

**MantisHub’s previously supported SOAP API is now on the deprecation path in favor of the REST API.