Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Unresolved
Component/s: User - SSH Keys
Labels:
- migrated

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Description

It is possible to add an SSH key to a team account. However, it is not possible to restrict write permissions for an SSH key.

This article indicates it is possible to do the equivalent thing on Bitbucket Server.

SSH keys added to a team are useful for granting some other server or application access to the team's repositories, but when that external application only requires read access, this authentication method fails the principle of least privilege.

A workaround is to create a resource user for the application and assign them to the Viewer group, but this is non-optimal since users on Bitbucket teams can come at cost.

Attachments

Issue Links

mentioned in: Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Nick Reilingh

Votes:: 3 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 05/Oct/2016 11:24 PM

Updated:: 06/Apr/2021 10:42 PM