Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-11192

Allow for enforcement of personal access tokens for HTTPS REST/GIT calls.

XMLWordPrintable

    • 2
    • 2
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      When integrating Bitbucket with a strong-authentication (2FA) frontend proxy, we crossed an interesting wonder as to how can we do  strong-authentication with SourceTree/GIT clients.

      The suggestion here is to have a global system configuration that would require REST/SCM HTTPS services to use the user's personal access tokens, and reject user passwords.

      This would nudge users away from hard-coding their corporate passwords in clear-text files, and instead resort to personal access tokens and usage awareness.  

              jthomas@atlassian.com Justin Thomas
              2568663eff02 Kristopher Lalletti
              Votes:
              3 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: