Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Fixed
Fix Version/s: 3.8.0
Component/s: None
Labels:
None

Feedback Policy:

We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

Description

Currently the @ mention feature searches all users in the Stash directory even if they are not a licensed Stash user. Since it's not possible for non-licensed users to login to Stash, they should not be included in the list of results.

The current behavior can cause all users to be loaded into memory during a search. If enough users are synced to Stash, this can cause OOME. For example, if 100,000 users are synced to Stash, but only 1,000 are licensed users, all 100,000 users are loaded into memory.

Workaround

Limit the LDAP user filter to only sync users that should have access to Stash or a smaller subset of the larger user base.

Attachments

Issue Links

relates to

BSERV-3584 Allow only licensed and authorised users to be reviewer

Closed

BSERV-13590 Ability to select the unlicensed user in Bitbucket user pickers

Gathering Interest

was cloned as

BSERV-7242 Limit @ mention list to authorized users

Gathering Interest

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...

(2 mentioned in)

Activity

People

Assignee:: Unassigned

Reporter:: Jeff Thomas

Votes:: 4 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 23/Jan/2015 5:46 PM

Updated:: 07/Dec/2022 2:58 AM

Resolved:: 01/Apr/2015 12:35 AM