IMPORTANT: JAC is a Public system and anyone on the internet will be able to view the data in the created JAC tickets. Please don’t include Customer or Sensitive data in the JAC ticket.
Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-22778

Limit the repositories an OAuth consumer can access

XMLWordPrintable

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Problem Definition

      There are integrations for Bitbucket Cloud using OAuth with the Client Credentials Grant flow (like the Jenkins Bitbucket Branch Source plugin). The access tokens obtained represent the owner of the consumer, and if the OAuth consumer has Repositories permissions then the access tokens have access to all the repositories of the consumer's workspace.

      Some users would like to limit the repositories that an OAuth consumer has access to. In the case of Jenkins plugin. they don't want Jenkins to have access to all of their workspace's repos.

      Suggested Solution

      Allow admins to limit the repositories a certain OAuth consumer can access.

            Loading...
            IMPORTANT: JAC is a Public system and anyone on the internet will be able to view the data in the created JAC tickets. Please don’t include Customer or Sensitive data in the JAC ticket.
            Uploaded image for project: 'Bitbucket Cloud'
            1. Bitbucket Cloud
            2. BCLOUD-22778

            Limit the repositories an OAuth consumer can access

            XMLWordPrintable

              • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

                Problem Definition

                There are integrations for Bitbucket Cloud using OAuth with the Client Credentials Grant flow (like the Jenkins Bitbucket Branch Source plugin). The access tokens obtained represent the owner of the consumer, and if the OAuth consumer has Repositories permissions then the access tokens have access to all the repositories of the consumer's workspace.

                Some users would like to limit the repositories that an OAuth consumer has access to. In the case of Jenkins plugin. they don't want Jenkins to have access to all of their workspace's repos.

                Suggested Solution

                Allow admins to limit the repositories a certain OAuth consumer can access.

                        Unassigned Unassigned
                        tboudale Theodora Boudale
                        Votes:
                        16 Vote for this issue
                        Watchers:
                        11 Start watching this issue

                          Created:
                          Updated:

                            Unassigned Unassigned
                            tboudale Theodora Boudale
                            Votes:
                            16 Vote for this issue
                            Watchers:
                            11 Start watching this issue

                              Created:
                              Updated: