Holiday API permissions differ from UI permissions

The UI on https://example.atlassian.net/plugins/servlet/ac/io.tempo.jira/tempo-app#!/planner shows everyone's public holidays to everyone. This way, everyone can know when their teammates are available. There are no permission issues here.

The APIs under /holiday-schemes return 403 for everyone except administrators. The GET calls should work for regular users, to be in line with the regular UI permissions.

Particularly, we would like a user application (using a personal access token, PAT) to be able to read the holiday scheme for a given user and subsequently fetch its dates:

GET /holiday-schemes/users/{accountid}
GET /holiday-schemes/{schemeId}/holidays

How much work would it cause you to change the, or create a, permission level such that users with PATs can access this public holiday data (which is literally published by countries, not secret at all)?

Thank you!

Luc G
Dec 4 2023

Tempo Products	Tempo Timesheets, Tempo Planner, Tempo Teams
Tempo Platform	Cloud

Comments (0)
Votes (1)

Attach files

Enter a subject

Tempo Ideas

Welcome to Tempo’s Idea Portal! Your suggestions are valuable to us and help us make our products even better.

Below is a list of ideas for Tempo, so please search, review and vote for those that would help you the most. We encourage you to add an idea if you don’t see it listed. You can stay updated on the work we are doing here at Tempo by contributing to this page.

To learn more and see our Frequently Asked Questions, click here.

Holiday API permissions differ from UI permissions

Related ideas

Holiday API permissions differ from UI permissions

Identify yourself with your email address

Related ideas