[ACCESS-899] Disabling managed users to create repositories on their own account

Type: Suggestion
Resolution: Unresolved
Component/s: User Sync - Managed Accounts
Labels:
None

Support reference count:
47
Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

It would be a useful feature if the admins of managed Bitbucket Cloud accounts could disable their own users to create repositories on their managed Bitbucket Cloud accounts.

is related to

ACCESS-1683 [Internal] Possible dupes of ACCESS-1468

Closed

relates to

ACCESS-1468 Allow Administrators to control managed users' associated sites and products

Closed

mentioned in: Page Failed to load; Page Failed to load; Page Failed to load

Form Name

Evgeny Martynov added a comment - 26/Feb/2021 2:43 PM

I agree with the rest of the participants in this feature.

Evgeny Martynov added a comment - 26/Feb/2021 2:43 PM I agree with the rest of the participants in this feature.

josep.cos added a comment - 05/Sep/2020 6:57 AM

In fact, we have decided to quit Bitbucket and go to GitHub due to this severe security hole. We have been asking for a solution to Bitbucekt support for a couple of months and after having received a negative answer finally we were forced to migrate to another application.

josep.cos added a comment - 05/Sep/2020 6:57 AM In fact, we have decided to quit Bitbucket and go to GitHub due to this severe security hole. We have been asking for a solution to Bitbucekt support for a couple of months and after having received a negative answer finally we were forced to migrate to another application.

Ugur Gungor added a comment - 31/Aug/2020 7:14 AM - edited

This is very required feature. We are using Bitbucket Cloud Premium with Atlassian Access, since this feature is not available ip whitelisting becomes useless. Users could easily clone private repos to their own workspaces. This is major security risk.

Ugur Gungor added a comment - 31/Aug/2020 7:14 AM - edited This is very required feature. We are using Bitbucket Cloud Premium with Atlassian Access, since this feature is not available ip whitelisting becomes useless. Users could easily clone private repos to their own workspaces. This is major security risk.

Vikas Nangia added a comment - 22/Aug/2020 12:21 PM

Agreed. This is a major security risk as it allows managed employees to upload code to personally created repositories, without being flagged by firewalls and DLPs.

This is a big problem that should be prioritized.

Vikas Nangia added a comment - 22/Aug/2020 12:21 PM Agreed. This is a major security risk as it allows managed employees to upload code to personally created repositories, without being flagged by firewalls and DLPs. This is a big problem that should be prioritized.

Emanuel Y added a comment - 21/Aug/2020 12:25 PM - edited

I'm hoping this feature request is not vote driven due to the major security concerns it currently allows. Bitbucket cloud Admins for orgs are shut out from being able to place constraints on personal workspaces. Today it's left up to the users vs. the account owners.

Currently, users can use repositories under their personal workspace to share with external parties. Which of course brakes companies security protocols amongst other vulnerabilities.

Please view this request as a Major Security Risk rather than a simple feature request.

Emanuel Y added a comment - 21/Aug/2020 12:25 PM - edited I'm hoping this feature request is not vote driven due to the major security concerns it currently allows. Bitbucket cloud Admins for orgs are shut out from being able to place constraints on personal workspaces. Today it's left up to the users vs. the account owners. Currently, users can use repositories under their personal workspace to share with external parties. Which of course brakes companies security protocols amongst other vulnerabilities. Please view this request as a Major Security Risk rather than a simple feature request.

Patrick Wolf - Atlassian (Inactive) added a comment - 13/Jul/2020 6:11 PM

I'm moving this to Access because it is a feature that would be implemented within Access at an Org level. Workspace is the top level container within Bitbucket and one Workspace cannot manage a separate Workspace.

Patrick Wolf - Atlassian (Inactive) added a comment - 13/Jul/2020 6:11 PM I'm moving this to Access because it is a feature that would be implemented within Access at an Org level. Workspace is the top level container within Bitbucket and one Workspace cannot manage a separate Workspace.

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Evgeny Martynov added a comment - 26/Feb/2021 2:43 PM

Expand comment: Evgeny Martynov added a comment - 26/Feb/2021 2:43 PM

Collapse comment: josep.cos added a comment - 05/Sep/2020 6:57 AM

Expand comment: josep.cos added a comment - 05/Sep/2020 6:57 AM

Collapse comment: Ugur Gungor added a comment - 31/Aug/2020 7:14 AM, Edited by Ugur Gungor - 31/Aug/2020 7:28 AM

Expand comment: Ugur Gungor added a comment - 31/Aug/2020 7:14 AM, Edited by Ugur Gungor - 31/Aug/2020 7:28 AM

Collapse comment: Vikas Nangia added a comment - 22/Aug/2020 12:21 PM

Expand comment: Vikas Nangia added a comment - 22/Aug/2020 12:21 PM

Collapse comment: Emanuel Y added a comment - 21/Aug/2020 12:25 PM, Edited by Emanuel Y - 21/Aug/2020 12:38 PM

Expand comment: Emanuel Y added a comment - 21/Aug/2020 12:25 PM, Edited by Emanuel Y - 21/Aug/2020 12:38 PM

Collapse comment: Patrick Wolf - Atlassian (Inactive) added a comment - 13/Jul/2020 6:11 PM

Expand comment: Patrick Wolf - Atlassian (Inactive) added a comment - 13/Jul/2020 6:11 PM

People

Dates