atlassian-browser-mcp
This MCP server wraps the upstream mcp-atlassian toolset with browser-cookie authentication, enabling AI assistants to interact with Jira and Confluence using your real Chrome SSO session.
Authentication Guidance (
atlassian_logintool): Get instructions on how to authenticate by capturing cookies out-of-band via a Chrome extension or CLI import — the server itself never opens a browserSSO/Corporate Authentication Support: Works behind corporate SSO (Okta, SAML, Azure AD, etc.) where API tokens are unavailable, by reusing your live Chrome session cookies
Atlassian Cloud & Server/Data Center Support: Compatible with both
*.atlassian.netCloud instances and self-hosted Server/Data Center deploymentsJira Integration: Access the full
mcp-atlassianJira toolset — get issues, search with JQL, read comments, and moreConfluence Integration: Access the full
mcp-atlassianConfluence toolset — retrieve pages, search spaces, and read contentFast-Fail on Expired Sessions: When cookies are missing or expired, tools immediately return a clear
AuthRequiredErrorwith re-sync instructions rather than blocking or hanging
Provides tools for interacting with Atlassian Cloud and Server/Data Center instances, enabling AI agents to manage Jira issues, projects, and Confluence pages programmatically through browser-cookie authentication.
Provides tools for managing Confluence pages, including retrieval, search, and export to Markdown, supporting both Cloud and Server/Data Center instances with browser-cookie authentication.
Provides tools for managing Jira issues, including retrieval, search, and updates, supporting both Cloud and Server/Data Center instances with browser-cookie authentication.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@atlassian-browser-mcpget Jira issue ABC-123"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
atlassian-browser-mcp
MCP server that wraps the upstream mcp-atlassian toolset with browser-cookie authentication. Cookies are captured from your real Chrome by a bundled Chrome extension — no Playwright, no browser automation. Works for Atlassian Cloud (*.atlassian.net) and Server/Data Center behind corporate SSO (Okta, SAML, etc.) where API tokens are not available.
How it works
Capturing cookies and serving data are separate, and there is no browser automation anywhere — this is what keeps the MCP server from hanging:
Capture cookies with the Chrome extension. Load
chrome-extension/unpacked. After a one-timeatlassian-cli install-host, open a Jira/Confluence tab and click Sync cookies — cookies for the current tab’s domain go to a local Native Messaging host that writes per-service jars.The MCP server serves data only. It reads the saved cookies via a custom
requests.Sessionsubclass and never opens a browser. On a missing/expired session it fails fast with anAuthRequiredErrortelling you to re-sync — it does not block.
⚠️ Earlier versions launched a Playwright login browser from inside the server. Because the server is detached and async, that blocked tool calls for minutes (often forever) and could deadlock Playwright's sync API on the event loop. Moving capture to the extension removes that failure mode — and removes the need to read Chrome's on-disk cookie DB, which Chrome 127+ "app-bound" encryption blocks.
The server monkey-patches JiraClient and ConfluenceClient constructors in mcp-atlassian to inject the browser-cookie session, giving full parity with the upstream tool surface.
Related MCP server: atlassian-mcp-server
Files
File | Purpose |
| MCP entrypoint. Patches upstream clients, registers |
| Shared auth core: |
| Command-line front-end ( |
| Shared cookie → jar import + liveness probe (CLI and native host) |
| Chrome Native Messaging host for one-click Sync |
| Manifest V3 extension: Sync current-tab cookies via native host — see |
| MCP launcher: creates venv, installs deps via |
| Dependency pins |
Reusing your real Chrome session (the Chrome extension)
Modern Chrome (127+) encrypts cookies with an app-bound key that can't be read off disk, so the reliable way to reuse your Chrome SSO session is the bundled extension — it reads cookies from Chrome's live cookie store, no password or MFA re-prompt:
export JIRA_URL=… CONFLUENCE_URL=…then./atlassian-cli install-host(registers the native host; freezes URLs for Chrome-launched processes).chrome://extensions→ enable Developer mode → Load unpacked → selectchrome-extension/→ reload after install-host.Open a Jira/Confluence tab, click the extension → Sync cookies.
Cookie jars are never auto-deleted on an auth failure. Jira and Confluence
keep separate jars; on Atlassian Cloud they share one host, so a single sync
covers both. See chrome-extension/README.md for
details and the managed-Chrome caveat.
CLI usage
export JIRA_URL="https://yourco.atlassian.net"
export CONFLUENCE_URL="https://yourco.atlassian.net" # Cloud: same host
./atlassian-cli install-host # once per machine
# then: open Jira/Confluence tab → extension → Sync cookies
./atlassian-cli jira get PROJ-123 --comments
./atlassian-cli jira search 'project = PROJ AND status = "In Progress"'
./atlassian-cli confluence get 123456789 --markdown -o page.md
./atlassian-cli confluence search 'release process' --space DEVUsage
./run-atlassian-browser-mcp.shMCP server configuration
Add to your Claude Code, Cursor, or other MCP client configuration:
{
"mcpServers": {
"atlassian": {
"command": "/path/to/atlassian-browser-mcp/run-atlassian-browser-mcp.sh",
"env": {
"JIRA_URL": "https://yourco.atlassian.net",
"CONFLUENCE_URL": "https://yourco.atlassian.net"
}
}
}
}The server never opens a browser. Capture cookies once with the extension Sync
(or import); all MCP tool calls then proceed using the saved session, and a
missing/expired session fails fast with a clear re-sync message.
Environment variables
Variable | Default | Description |
| (required) | Jira base URL (e.g. |
| (required) | Confluence base URL (e.g. |
|
| Enable browser-cookie auth (set |
|
| Cookie-jar file. Per-service by default; an explicit value is still namespaced per service |
| (auto) | Comma-separated URL/text markers for SSO redirect detection. Defaults cover Okta, ADFS, Azure AD, PingOne, Google SAML |
| (Chrome 136) | Custom User-Agent string for API requests and liveness probes |
|
| Which upstream toolsets to enable |
Requirements
Python 3.11+
uv (for dependency management)
Google Chrome (or another Chromium-family browser) to run the extension and capture the session
Network access to your Atlassian instance
Troubleshooting
Symptom | Cause | Fix |
Tools return | No saved session (jar missing or expired) | Extension Sync (after |
| Exported cookies are already expired | Sign into Jira/Confluence in Chrome, re-Export, and |
No cookies match your hosts on |
| Fix the env vars to point at the same instance you exported from |
"Load unpacked" is greyed out | Managed/corporate Chrome blocks unpacked extensions | Ask IT to allowlist the extension, or pack & self-host it (see |
"Upstream compatibility check failed" |
| Pin to a compatible version or update the wrapper |
Maintenance
Tools
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/tinyc0der/atlassian-cookie-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server