Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-2722

Token based HTTP authentication

    XMLWordPrintable

    Details

    • UIS:
      50
    • Feedback Policy:
      We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Description

      Atlassian status as of October 2017

      Hi everyone,

      Thanks to everyone for voting and commenting on this suggestion. In Bitbucket Server and Data Center 5.5, we have introduced Personal access tokens. User can create a token with limited scopes (e.g project and repository read) and use them for authenticating REST calls, git operations and integrating with other applications. More details can be found in the release notes

      This satisfies the original suggestion but some of you have requested the the ability to add OAuth 2.0 consumers for integrating with other applications. It is something that we're exploring and I'm keeping this issue open to track it however, we're not able to provide any timeline for it. Learn more about our process here.

      Cheers,

      Imran Khan

      Product Manager - Bitbucket Server and Data Center

      Problem Definition

      It is inconvenient and in some cases not viable from a security standpoint to use password based authentication to access Bitbucket (eg for REST calls from scripts, CI systems and other tooling).

      Suggested Solution

      Provide the possibility to authenticate via HTTP using a token based mechanism (possibly OAuth).

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              jdumay JamesA
              Votes:
              67 Vote for this issue
              Watchers:
              61 Start watching this issue

                Dates

                Created:
                Updated: