Controlling access to code
Bitbucket Server provides the following types of permissions to allow fully customizable control of access to code.
次のことも可能です。
- allow public (anonymous) access to projects and repositories. See Allowing public access to code.
- use SSH keys to allow user accounts and other systems to connect securely to Bitbucket Server repositories for Git operations. See Using SSH keys to secure Git operations.
グローバル権限
Control user and group access to Bitbucket Server projects and to the Bitbucket Server instance configuration. For example, these can be used to control the number of user accounts that can access Bitbucket Server for licensing purposes.
See Global permissions.
プロジェクト権限
Apply the same access permissions to all repositories in a project. For example, these can be used to define the core development team for a project.
See Using project permissions.
Repository permissions
Extend access to a particular repository for other, non-core, users. For example, these can be used to allow external developers or consultants access to a repository for special tasks or responsibilities.
See Using repository permissions.
ブランチの権限
Control commits to specific branches within a repository. For example, these can provide a way to enforce workflow roles such as the Release Manager, who needs to control merges to the release branch.
Permissions matrix
The table below summarizes the cumulative effect of the permissions described above for anonymous and logged in users. In general, repository permissions override project permissions. A personal project can not be made public.
キー
| 権限 | 効果 |
|---|---|
| BROWSE | Can view repository files, clone, pull to local |
| READ | Can browse, clone, pull, create pull requests, fork to a personal project |
| WRITE | Can merge pull requests |
| ADMIN | Can edit settings and permissions |
| Global (logged in) | プロジェクト | リポジトリ | ブランチ | Effective permission |
|---|---|---|---|---|
 | Personal | Personal | N/A | アクセスなし |
| Personal | Public access | N/A | BROWSE just that repo |
| アクセスなし | アクセスなし | N/A | アクセスなし |
| アクセスなし | Public access | N/A | BROWSE just that repo |
| Public access | Public access | N/A | BROWSE all repos in project |
 | Personal | Personal | N/A | アクセスなし |
| Personal | Public access | N/A | READ just that repo |
| アクセスなし | アクセスなし | N/A | アクセスなし |
| アクセスなし | Public access | N/A | READ just that repo |
| Public access | アクセスなし | N/A | READ all repos in project |
| Public access | Public access | N/A | READ |
| Public access | Public access | For this user | READ that branch, no WRITE |
| アクセスなし | READ | N/A | READ just that repo |
| Public access | READ | N/A | READ just that repo |
| READ | アクセスなし | N/A | READ all repos in project |
| READ | Public access | N/A | READ all repos in project |
| READ | READ | N/A | READ all repos in project |
| READ | アクセスなし | For this user | READ that branch, no WRITE |
| アクセスなし | WRITE | N/A | WRITE just that repo |
| Public access | WRITE | N/A | WRITE just that repo |
| WRITE | アクセスなし | N/A | WRITE all repos in project |
| WRITE | WRITE | N/A | WRITE all repos in project |
| WRITE | WRITE | For other users | WRITE to other branches only |
| ADMIN | Can edit settings and permissions |