-
Suggestion
-
Resolution: Duplicate
Problem Definition
In Commits page of a repository, the field Author shows the Bitbucket user the following way:
The commit author's email is checked, to see if it matches a confirmed email of a Bitbucket user. If it does, this user appears as author of the commits.
Sometimes users have in their .gitconfig file an email different than their Bitbucket account email.
In this case, no Bitbucket user shows as Author.
Additionally, users may accidentally use someone else's email in their .gitconfig (e.g. using a different laptop), and the commits they push show an author different than themselves.
Repo admins/owners would like to be able to see which user pushed a commit in Bitbucket, in order to track a commit to the user that pushed it.
Suggested Solution
In Commits page of a repo, add a column that shows which Bitbucket user pushed each commit.
- duplicates
-
BCLOUD-3166 Support signed commits for Git (BB-319)
- Closed
- is duplicated by
-
BCLOUD-16213 Ability to view authenticated user who pushed commits
- Closed
-
BCLOUD-18442 Knowing who really pushed the commit
- Closed
People could make public repos and impersonate people under the current system. Seems like a major security flaw to me.
For example they could find users emails from newsgroups and create public interest in a project by impersonating someone else's email. Worse is the user's commits link to that Bitbucket users account, which seems like a major security concern.