Jira Cloud Destination
Configuring Jira Cloud as an alert destination in your Panther Console
Last updated
Was this helpful?
Configuring Jira Cloud as an alert destination in your Panther Console
Last updated
Was this helpful?
Destinations are integrations that receive alerts from rules, policies, system health notifications, and rule errors. Panther supports configuring Jira as the destination where you will receive alerts.
When an alert is forwarded to a Jira destination, a bug, story, or task is created in the specified project with the specified assignee. You can choose to sync status updates, assignees, and comments between Panther alerts and their corresponding Jira issues in .
This page explains how to set up a Jira Cloud destination. See the .
With the Jira alert destination in Panther, you can enable one-way sync or two-way sync for assignee, status, and/or comments.
One-way sync (Panther > Jira): When the status or assignee is updated or a comment is created on a Panther alert, the same change in status, assignee, or comment is made on the corresponding Jira issue.
Two-way sync: In addition to the one-way sync functionality, when the status or assignee is updated or a comment is created or updated on a Jira issue that was created by a Panther alert, the same change in status, assignee, or comment is made on the corresponding Panther alert.
When setting up Jira Cloud destinations, note that:
It is possible to:
Set up multiple Jira Cloud destinations with one-way sync (linking to the same or different Jira projects in the same or different Jira tenants).
Set up a single Jira Cloud destination with two-way sync and one or more Jira Cloud destinations with one-way sync (linking to the same or different Jira projects in the same or different Jira tenants).
It is not recommended to:
Set up multiple Jira Cloud destinations with two-way sync that are linked to different projects within different Jira tenants. This configuration may cause an infinite loop of syncing.
It is not possible to:
Set up multiple Jira Cloud destinations with two-way sync that are linked to different projects within the same Jira tenant. This configuration causes an infinite loop of syncing.
Set up a single Jira Cloud destination with two-way sync that is linked to multiple Jira projects.
To install Panther Cloud Sync:
Under Select a site to install this app on, choose the Jira instance for which you would like to enable Panther two-way sync.
Click Install.
You will finish configuring this app after configuring the Jira alert destination in Panther.
If you plan to enable one-way or two-way assignee sync, each of your organization's users who will be assigned to Jira issues created by Panther alerts must make their email available to installed apps in Jira. Each of these users should complete the process below:
Scroll down to the Contact section.
Click Copy and store the token in a secure location.
Note: The token is sensitive information and you will not be able to view it again.
In the left-side navigation bar of your Panther Console, click Configure > Alert Destinations.
Click +Add your first Destination.
If you have already created Destinations, click Create New in the upper right side of the page to add a new Destination.
Click Jira Cloud.
Fill out the form:
Display Name: Enter a descriptive name.
Organization Domain: Enter your organization's Jira domain.
For example: https://example.atlassian.net.
Issue Type: Enter the Issue type from Jira. This can be Bug, Story, Task, or any custom type.
Email: Enter the email address of the Jira user who has permissions to create the new issues with the corresponding Jira API Key.
Jira API Token: Enter the API token you generated in the earlier steps of this documentation.
Severity Levels: Select the severity level of alerts to send to this Destination.
Default Alert Types: Select the alert types to send to this Destination.
Log Types: By default, we will send alerts from all log types. Specify log types here if you want to only send alerts from specific log types.
Alert Status:
Do not sync: Updates to the status of an alert in Panther will not be reflected on the corresponding Jira issue, and vice versa.
Any alert status changes made in Panther will also be added as a comment on the associated Jira issue.
If you have custom transition rules in your Jira project workflows, Panther may not be able to transition the ticket from one status to the next. It is important that all Jira statuses are able to be transitioned from any other Jira status. This can be configured in the corresponding Jira project's workflow settings.
Two-Way: In addition to the one-way functionality described above, if the status of a Jira issue is updated, the status of the corresponding Panther alert will also be updated.
Assignee:
Do not sync: Updates to the assignee of an alert in Panther will not be reflected on the corresponding Jira issue, and vice versa.
Two-Way: In addition to the one-way functionality described above, if the assignee of a Jira issue is updated, the assignee will also be updated on the Panther alert, as long as there is a Panther user with a matching email address.
Comments:
Do not sync: Comments left on an alert in Panther will not be reflected on the corresponding Jira issue, and vice versa.
When a comment posted on an alert in Panther is synced to the corresponding Jira issue, the comment text is prepended with "[Panther user] commented on Panther:"
When syncing a comment from Panther to Jira, Panther tries to maintain the original formatting so that comments look identical. In rare cases, due to conversion limitations, the comment may be formatted differently—without a loss of content.
Two-Way: In addition to the one-way functionality described above, if a comment is posted on a Jira issue, the comment will also be posted on the Panther alert.
When a comment posted on a Jira issue is synced to the corresponding Panther alert, the comment text is prepended with "[Jira user] commented on Jira:"
When a comment on a Jira issue is edited, the comment on the Panther alert will be edited.
Click Continue.
On the Configure Jira Issue Properties page, fill out the form:
Assignee ID: Select the user that issues will be assigned to.
The users available in this dropdown field are pulled from your Jira instance.
Label and prioritize issues based on severity level: Enable this if you would like to apply labels and a priority level in Jira based on alert severity in Panther. If disabled, you can still set labels and a priority level globally i.e., not based on severity). The labels and priority levels available in these dropdown are pulled from your Jira instance. If you create a new label in the Labels dropdown, it will also be created in your Jira instance.
If set to ON: For each severity level, specify the Labels and Priority.
If set to OFF: Specify the Labels and Priority for all Jira issues created by Panther.
(Only if you enabled one-way or two-way status syncing) On the Status Syncing page, map the Panther alert statuses to the corresponding statuses you'd like to use in Jira.
(Only if you enabled two-way sync for alert status, assignee, or comments) On the Two-Way Sync page, copy the Panther Instance URL and API Token and store them in a secure location, as you will need them in the next step. The API Token will not be shown to you again.
In your Jira console, navigate to Settings > Apps, then click Manage apps.
Under User-installed apps, click Panther Cloud Sync to expand its section.
Click Configure.
Under Panther Application Configuration, enter values for the following fields:
Panther Instance URL: Enter the Panther Instance URL you generated in Panther in the previous step.
Panther Secret: Enter the API Token you generated in Panther in the previous step.
Tracked Jira Project: Select the project you would like to sync to Panther. This project should match the one for which you entered a Project Key in Panther.
Click Save.
On the final page of the destination configuration in Panther, optionally click Send Test Alert to test the integration using a test payload. When you are finished, click Finish Setup.
When two-way sync for comments is enabled and a comment on a Jira issue is created or updated, advanced formatting (e.g., tables or images) will be stripped from the comment's representation in Panther.
The comment formats supported in Panther include:
Bold
Italic
Strikethrough
Links
Code blocks
Paragraphs and line breaks
Quotes
Bulleted lists
Numbered lists
The request body payload looks similar to the example below:
The request header that Panther sends is in the following format:
To enable two-way sync, you must first install the app in your Atlassian instance, which will allow Panther to receive updates to Jira issues Panther created. Panther will not receive updates for issues that were not created by Panther.
On the , click Get app.
In your Atlassian console, visit the .
For your email address, set the Who can see this? value to Anyone.
Log in to your Atlassian account and navigate to the .
Click Create API Token, add a descriptive label, and click Create:
Project Key: Enter the project identifier within your organization. You can find this in Jira in your project settings page or by browsing and locating the key column.
In the Syncing Options section, make a selection for each of the following:
One-Way: When the status of an alert is changed in the Panther Console or , or via the , the status of the corresponding Jira issue is also updated.
One-Way: When the assignee of a Panther alert is updated (in the Panther Console or via the ), the assignee of the corresponding Jira issue is also updated.
The Panther alert and Jira issue assignees are matched by email address. If the email address associated to the Panther account cannot be found in Jira (either because it does not exist or ), an update to the Jira issue will not be performed.
Currently, updates to the alert assignee in a Panther do not sync to the associated Jira issue.
One-Way: When a comment is posted on a Panther alert (in the Panther Console or via the ), the comment is also posted on the corresponding Jira issue.
There are some limitations to comment formatting in Panther. See for more information.
Click Save Changes.
Click Continue.
For information on troubleshooting Jira alert destinations, please see this KB article: .
The alert_context payload is JSON using JIRA's native formatting. Additionally, Panther Rule ID and Alert ID fields are surfaced in the ticket’s description for better automation support.
For more information on alert routing order, modifying or deleting destinations, and workflow automation, please see the Panther docs: .
