When connecting to SharePoint or OneDrive for Business, if you get the “Need admin approval,” you need to ask a SharePoint/Azure Admin to authorize the app to be used.
Authorize the Team Files app to be used on SharePoint from Jira/Confluence:
The SharePoint/Azure admin should go to Confluence/Jira, open the Team Files App [or the dedicated SharePoint Connector App] app and connect to SharePoint.
Sign in as a Microsoft Office 365 admin to connect the app. Authorize the app on behalf of the organization. This needs to be done just one time.
Now, any user will be able to use the Team Files app in Jira or Confluence. Read/Write permissions are based on each user’s permissions.
Team Files / SharePoint Connector Apps use the following permissions on behalf of the user to make the files and folders accessible on Jira and Confluence via OAuth 2.0. The apps alone do not have any read or write permissions, even after authorization. The apps use each user’s access token to access content in SharePoint from Jira or Confluence.
API/Permissions name | Type | Description | Admin Consent Required |
|---|---|---|---|
Microsoft Graph | |||
| Delegated | Have full access to all files user can access | No |
| Delegated | Create, edit, and delete items and lists in all site collections | No |
SharePoint | |||
| Delegated | Read and write items and lists in all site collections | No |
| Delegated | Read and write user files | No |
SharePoint permissions on Confluence / Jira
If you select the simplified authentication or replicate SharePoint permissions, it changes how files are accessed. If you want any user on Confluence / Jira to access any connected folder turn “Replicate Storage Permissions” OFF.
If you want the SharePoint permissions to be respected, turn it ON. That way you audit who access or edit files in Confluence. Check here how to change the option:
Also, check here for more details about what changes for each setting: What changes when "Replicate storage permissions" is selected