Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-7346

Permissions audit: allow project admin to review effective permissions for a particular user

    XMLWordPrintable

Details

    • 39
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Atlassian status as of Oct 2022

      Hi everyone,

      I'm happy to announce that in Bitbucket Data Center 8.5 we have completely redesigned repository/project permission page. Repository admins can see not only users with direct permissions, but also users who have access because of permissions assigned on project/global level. For example, if user has read permission for a repository, but also has write permissions for the project, then repository admin will be able to see both permissions in the list. This feature will help repository admins to identify effective permissions of specific users much easier. 

      Cheers,
      Anton Genkin
      Product Manager - Bitbucket Data Center

      Origin

      I have a project with some sensitive repositories and a non-sensitive respository. I need to provide read access to the non-sensitive repository to a user, but he needs to NOT have access to the sensitive repositories.

      I got this working, but only after accidentally opening the project up to any logged-in user, and I did not realize this until I was able to request a test user to be created so I could log in as the test user and see what repositories were accessible.

      The permissions management would be a LOT easier to verify if you could just see what a particular user sees.

      Attachments

        Issue Links

          is duplicated by

          Suggestion - BSERV-8562 As an admin, I want to retrieve an overview of the permissions at any level (including global, project, repository), so that I can have an overview of the access level for every user and group

          • Closed

          Suggestion - BSERV-9748 Create REST endpoints to return permissions for all users and groups

          • Closed
          is related to

          Suggestion - BSERV-3894 Exposes effective permissions of a user to plugin's developer and UI

          • Gathering Interest
          relates to

          Suggestion - BSERV-9690 Ability to get all users permissions in system

          • Gathering Interest
          mentioned in

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Page Loading...

          Activity

            People

              Unassigned Unassigned
              10a9d3476bdf Jason Sachs
              Votes:
              8 Vote for this issue
              Watchers:
              11 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: