Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-12013

Trigger an Alert When a User is Granted Admin Privileges

    XMLWordPrintable

Details

    • 1
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      This suggestion comes from a general security finding.

      There is no alert in place when a new privileged user to a system is assigned. This increases the likelihood that unauthorized assignment to a privileged account goes undetected.

      Assigning a new privileged user to a system should trigger an alert for review to ensure the assignment was authorized.

      How that alert is processed could be an in application notification, an email alert to administrators, or an in-application audit log GUI (like JIRA's implementation).

      Attachments

        Activity

          People

            Unassigned Unassigned
            d52c3f23f4d3 Ryan Aucone
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: