Access can replace your VPN and reduce the need for application-specific passwords for certain tools. Applications can validate the identity in the token generated by Access to provide a single-sign on experience for end users.
When supported, applications will connect the identity in the token to a user profile configured in the application. The end user will only need to login once, with the identity provider, through the Access login page.
Support for on-premise Atlassian tools through a plugin open sourced by Cloudflare. You can find the code and installation instructions here.
Available natively in Redash as an authentication option here.