[BCLOUD-13552] As a repo admin I want to see which user pushed each commit in my repo - Customer request - Create and track feature requests for Atlassian products.

Type: Suggestion
Resolution: Duplicate
Component/s: Repository - Commit List
Labels:
- migrated

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Problem Definition

In Commits page of a repository, the field Author shows the Bitbucket user the following way:
The commit author's email is checked, to see if it matches a confirmed email of a Bitbucket user. If it does, this user appears as author of the commits.

Sometimes users have in their .gitconfig file an email different than their Bitbucket account email.
In this case, no Bitbucket user shows as Author.
Additionally, users may accidentally use someone else's email in their .gitconfig (e.g. using a different laptop), and the commits they push show an author different than themselves.

Repo admins/owners would like to be able to see which user pushed a commit in Bitbucket, in order to track a commit to the user that pushed it.

Suggested Solution

In Commits page of a repo, add a column that shows which Bitbucket user pushed each commit.

duplicates

BCLOUD-3166 Support signed commits for Git (BB-319)

Closed

is duplicated by

BCLOUD-16213 Ability to view authenticated user who pushed commits

Closed

BCLOUD-18442 Knowing who really pushed the commit

Closed

Charles G added a comment - 28/Apr/2021 6:30 PM

People could make public repos and impersonate people under the current system. Seems like a major security flaw to me.

For example they could find users emails from newsgroups and create public interest in a project by impersonating someone else's email. Worse is the user's commits link to that Bitbucket users account, which seems like a major security concern.

Charles G added a comment - 28/Apr/2021 6:30 PM People could make public repos and impersonate people under the current system. Seems like a major security flaw to me. For example they could find users emails from newsgroups and create public interest in a project by impersonating someone else's email. Worse is the user's commits link to that Bitbucket users account, which seems like a major security concern.

Jonathan BRS added a comment - 26/Oct/2018 4:28 PM

Hi, are there any plans to get this issue working? It will be really helpful for us.

Jonathan BRS added a comment - 26/Oct/2018 4:28 PM Hi, are there any plans to get this issue working? It will be really helpful for us.

Denis Kravtsov added a comment - 19/Jan/2018 11:37 AM

This really needs to be improved as currently any random user may be associated with a commit within a repository with restricted access in case global user is different from the user who cloned the repo.

Denis Kravtsov added a comment - 19/Jan/2018 11:37 AM This really needs to be improved as currently any random user may be associated with a commit within a repository with restricted access in case global user is different from the user who cloned the repo.

Assignee:: Unassigned

Reporter:: Theodora Boudale

Votes:: 5 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 15/Nov/2016 9:46 AM

Updated:: 23/Jul/2022 4:26 PM

Resolved:: 23/Jul/2022 4:26 PM

Bitbucket Cloud

Details

Description

Problem Definition

Suggested Solution

Attachments

Issue Links

Forms

Activity

[BCLOUD-13552] As a repo admin I want to see which user pushed each commit in my repo - Customer request

Collapse comment: Charles G added a comment - 28/Apr/2021 6:30 PM

Expand comment: Charles G added a comment - 28/Apr/2021 6:30 PM

Collapse comment: Jonathan BRS added a comment - 26/Oct/2018 4:28 PM

Expand comment: Jonathan BRS added a comment - 26/Oct/2018 4:28 PM

Collapse comment: Denis Kravtsov added a comment - 19/Jan/2018 11:37 AM

Expand comment: Denis Kravtsov added a comment - 19/Jan/2018 11:37 AM

People

Dates