Controlling access to code
Bitbucket Data Center provides the following types of permissions to allow fully customizable control of access to code.
次のことも可能です。
- allow public (anonymous) access to projects and repositories. See Allowing public access to code.
- use SSH keys to allow user accounts and other systems to connect securely to Bitbucket repositories for Git operations. See Using SSH keys to secure Git operations.
restrict changes to repository-level settings to meet your security and compliance needs and ensure code quality. Learn more about how project admins can restrict changes to repository settings
グローバル権限
Control user and group access to Bitbucket projects and to the Bitbucket instance configuration. For example, these can be used to control the number of user accounts that can access Bitbucket for licensing purposes.
See Global permissions.
プロジェクト権限
Apply the same access permissions to all repositories in a project. For example, these can be used to define the core development team for a project.
See Using project permissions.
Repository permissions
Extend access to a particular repository for other, non-core, users. For example, these can be used to allow external developers or consultants access to a repository for special tasks or responsibilities.
See Using repository permissions.
ブランチの権限
Control commits to specific branches within a repository. For example, these can provide a way to enforce workflow roles such as the Release Manager, who needs to control merges to the release branch.
Permissions matrix
The table below summarizes the cumulative effect of the permissions described above for anonymous and logged in users. In general, repository permissions override project permissions. A personal project can not be made public.
キー
権限 | 効果 |
---|---|
参照 | Can view repository files, clone, pull to local |
対象ページ | Can browse, clone, pull, create pull requests, fork to a personal project |
書き込み | Can merge pull requests |
Create repository | Can create repositories in a project and become repository admins for the repos they create |
管理 | Can edit settings and permissions |
Global (logged in) | プロジェクト | リポジトリ | ブランチ | Effective permission |
---|---|---|---|---|
Personal | Personal | N/A | アクセスなし | |
Personal | Public access | N/A | Browse just that repo | |
アクセスなし | アクセスなし | N/A | アクセスなし | |
アクセスなし | Public access | N/A | Browse just that repo | |
Public access | Public access | N/A | Browse all repos in project | |
Personal | Personal | N/A | アクセスなし | |
Personal | Public access | N/A | Read just that repo | |
アクセスなし | アクセスなし | N/A | アクセスなし | |
アクセスなし | Public access | N/A | Read just that repo | |
Public access | アクセスなし | N/A | Read all repos in project | |
Public access | Public access | N/A | 対象ページ | |
Public access | Public access | For this user | Read that branch, no Write | |
アクセスなし | 対象ページ | N/A | Read just that repo | |
Public access | 対象ページ | N/A | Read just that repo | |
対象ページ | アクセスなし | N/A | Read all repos in project | |
対象ページ | Public access | N/A | Read all repos in project | |
対象ページ | 対象ページ | N/A | Read all repos in project | |
対象ページ | アクセスなし | For this user | Read that branch, no Write | |
アクセスなし | 書き込み | N/A | Write just that repo | |
Public access | 書き込み | N/A | Write just that repo | |
書き込み | アクセスなし | N/A | Write all repos in project | |
書き込み | 書き込み | N/A | Write all repos in project | |
書き込み | 書き込み | For other users | Write to other branches only | |
Create repository | アクセスなし | N/A | Write all repos and create new repos in project. Users become admins of the repositories they create. | |
Create repository | 書き込み | N/A | Write all repos and create new repos in project. Users become admins of the repositories they create. | |
Create repository | 書き込み | For other users | Write to other branches only and create new repos in project. Users become admins of the repositories they create. | |
管理 | Can edit settings and permissions |