Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-3554

Restrict granting of public access to global administrators

    XMLWordPrintable

    Details

    • UIS:
      6
    • Feedback Policy:
      We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Description

      I upgraded our test install to 2.5.0, and I created acouple dummy users - AdminAmy and ProjectPaul, and went through a few scenarios with them. It appears that anyone project create permissions down to repo admin can toggle and untoggle the "make public" checkbox. Can there be a system setting to gray that box out unless you're a system administrator? As it is, we have been encourage by Atlassian to disseminate project create/admin privs as much as possible (it's in your own documentation) but that level of access allows you to make all repos in a project or individual repos public, which isn't a small think here. We have IP concerns in our repositories so sharing them publicly is a IP & security risk for us.

      A secondary improvement request would be to see a list of all public repos in the system admin screens, so we don't have to click in and out of each project to look to see what has been exposed.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              008b438a9f5a Kelly Schoenhofen
              Votes:
              38 Vote for this issue
              Watchers:
              24 Start watching this issue

                Dates

                Created:
                Updated: