[BCLOUD-9622] Add additional information to account audit log (BB-10722)

Type: Suggestion
Resolution: Unresolved
Component/s: Access - Account Management
Labels:

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.
Latest Update:

Hide

Hello everyone,

I am excited to announce that Bitbucket has released Bitbucket audit logs in Atlassian Access. This is Bitbucket's first release of events, which include workspace, project, and repository administration and configuration event logs. Additional events will be released over the next few weeks to provide further event coverage. The audit log feature in Atlassian Access includes an API so the logs can be exported to an SIEM tool, as well as a UI to search through and export the logs.

In order to enable the logs in Atlassian Access, you will need to link your Bitbucket workspace to your Atlassian Organization, detailed instructions are provided here.

More information on the audit log feature in Atlassian Access and how to enable the Bitbucket logs can be found here.

Looking forward to your feedback.

Cheers,

Denise Garcia

Show
Hello everyone, I am excited to announce that Bitbucket has released Bitbucket audit logs in Atlassian Access. This is Bitbucket's first release of events, which include workspace, project, and repository administration and configuration event logs. Additional events will be released over the next few weeks to provide further event coverage. The audit log feature in Atlassian Access includes an API so the logs can be exported to an SIEM tool, as well as a UI to search through and export the logs. In order to enable the logs in Atlassian Access, you will need to link your Bitbucket workspace to your Atlassian Organization, detailed instructions are provided here . More information on the audit log feature in Atlassian Access and how to enable the Bitbucket logs can be found here . Looking forward to your feedback. Cheers, Denise Garcia

The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:

Membership actions
Clones, Pushes, and downloads along with the IP address from where it is happening.
Updates in the workspaces or repositories
Fork creation
Content transfer.
Security features enabled/disabled

fstefanelli@atlassian.com edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

lmontiel@atlassian.com edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

641e77b2eb21 edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
c778a0660499 edit - include branch creation/deletion log

cacdc2da5150 edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

ptrinh@atlassian.com edit - Include changes to the repository, project and workspace access tokens (created and removed)

641e77b2eb21 edit - Include information about when a repository is imported.

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

is related to

BCLOUD-22273 Include clone logs with IP addresses on audit logs

Gathering Interest

relates to

BCLOUD-14346 Include "last access" or "last login" dates in audit log along with entry when user was added to the Repository access

Gathering Interest

BCLOUD-8322 Add clones and pushes to audit logging (BB-9452)

Reviewing

mentioned in: Page Failed to load; Page Failed to load; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(12 mentioned in)

chris-hopkins added a comment - 31/Dec/2024 12:22 PM

Renaming of repositories would be a great one to have!

A repository was moved to a different project and renamed.

We saw the move but not the rename in the logs so we did not realise which repository was moved (as the new name was in the logs) and assumed it had been deleted

chris-hopkins added a comment - 31/Dec/2024 12:22 PM Renaming of repositories would be a great one to have! A repository was moved to a different project and renamed. We saw the move but not the rename in the logs so we did not realise which repository was moved (as the new name was in the logs) and assumed it had been deleted

Patrik S made changes - 20/Sep/2024 2:39 PM

Description

Original: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to the repository, project and workspace access tokens (created and removed)

[~pschettert@atlassian.com] edit - Include information about when a repository is imported.

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

New: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to the repository, project and workspace access tokens (created and removed)

[~641e77b2eb21] edit - Include information about when a repository is imported.

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

Patrik S made changes - 20/Sep/2024 2:38 PM

Description

Original: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to the repository, project and workspace access tokens (created and removed)

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

New: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to the repository, project and workspace access tokens (created and removed)

[~pschettert@atlassian.com] edit - Include information about when a repository is imported.

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

Dave Parrish [Atlassian] made changes - 06/Aug/2024 10:42 PM

Assignee

Original: Dave Parrish [Atlassian] [ dparrish ]

New: Gayatri Ramesh [ 1c505570e116 ]

Lissa Roberts made changes - 01/Jul/2024 8:10 PM

Remote Link

Original: This issue links to "Page (Confluence)" [ 922197 ]

Lissa Roberts made changes - 01/Jul/2024 8:07 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 922197 ]

Nathan Curry added a comment - 06/Jun/2024 6:46 PM

So the "Improved audit logs for Bitbucket" roadmap entry says it was released back in 2022 and the linked doc said the events would be rolled out incrementally. It's been 2 year and we still don't see entries for anything related to projects, branches, merges, etc, etc. When can we expect the events to be added for everything in this list?
https://confluence.atlassian.com/bbkb/bitbucket-cloud-audit-log-events-1178872155.html

We've had to investigate issue we had recently and there are no logs to support any of the actions that happened, log events that we did have in Bitbucket server. What's the hold up?

Nathan Curry added a comment - 06/Jun/2024 6:46 PM So the "Improved audit logs for Bitbucket" roadmap entry says it was released back in 2022 and the linked doc said the events would be rolled out incrementally. It's been 2 year and we still don't see entries for anything related to projects, branches, merges, etc, etc. When can we expect the events to be added for everything in this list? https://confluence.atlassian.com/bbkb/bitbucket-cloud-audit-log-events-1178872155.html We've had to investigate issue we had recently and there are no logs to support any of the actions that happened, log events that we did have in Bitbucket server. What's the hold up?

Michael S made changes - 03/Jun/2024 8:10 AM

Remote Link

New: This issue links to "Page (Confluence)" [ 911642 ]

Rick Egli added a comment - 17/Apr/2024 7:45 PM

I have been directed here from BBS-216751

I specifically need to have more detail when BB IP restrictions are changed. Currently it shows who and from what IP - but we need to know what change was made (additions/removals, and the IP addresses affected).

For compliance reasons, the IP restrictions act as a sort of firewall and we have to secure these changes with change management and auditing of changes.

Rick Egli added a comment - 17/Apr/2024 7:45 PM I have been directed here from BBS-216751 I specifically need to have more detail when BB IP restrictions are changed. Currently it shows who and from what IP - but we need to know what change was made (additions/removals, and the IP addresses affected). For compliance reasons, the IP restrictions act as a sort of firewall and we have to secure these changes with change management and auditing of changes.

Phil C made changes - 08/Dec/2023 10:18 PM

Description

Original: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to repository,

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

New: The Audit log page currently doesn't log some crucial information on the shared workspaces, such as:
# Membership actions
# Clones, Pushes, and downloads along with the IP address from where it is happening.
# Updates in the workspaces or repositories
# Fork creation
# Content transfer.
# Security features enabled/disabled

[~fstefanelli@atlassian.com] edit - It would be great to add project information (who created a project, when it was last updated, show any project changes.

[~lmontiel@atlassian.com] edit - It would be also great to add information related to branch permission changes, showing who altered/created/deleted branch permissions on any given repo.
Please add this logging to the account Audit log.

[~641e77b2eb21] edit - It would be also great to add information about changes in the environment variables on the workspace/repository and deployment levels.
[~c778a0660499] edit - include branch creation/deletion log

[~cacdc2da5150] edit - It would be very interesting to also have the permissions/repository changes on all groups and projects of a workspace.

[~ptrinh@atlassian.com] edit - Include changes to the repository, project and workspace access tokens (created and removed)

For example, when an invitation to join a workspace is sent, there is no log stating when the invitation was sent nor who sent the invitation.

Assignee:: Gayatri Ramesh

Reporter:: raleighr3

Votes:: 140 Vote for this issue

Watchers:: 121 Start watching this issue

Created:: 03/Jun/2014 2:47 PM

Updated:: 20/Feb/2025 5:33 PM

Last Update On:: 29/Nov/2022

Bitbucket Cloud

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: chris-hopkins added a comment - 31/Dec/2024 12:22 PM

Expand comment: chris-hopkins added a comment - 31/Dec/2024 12:22 PM

Collapse comment: Nathan Curry added a comment - 06/Jun/2024 6:46 PM

Expand comment: Nathan Curry added a comment - 06/Jun/2024 6:46 PM

Collapse comment: Rick Egli added a comment - 17/Apr/2024 7:45 PM

Expand comment: Rick Egli added a comment - 17/Apr/2024 7:45 PM

People

Dates