We're building a BitBucket integration and are running into an issue. We need webhooks anytime a new PR is created. I understand that our OAuth app needs to ask for "Webhooks" permission and then we can create webhook endpoints via the API call.
For BitBucket Server & Data Center
Turns out the user needs to have REPO_ADMIN permission in BitBucket Server in order to create new webhook receiver. This doesn't sound right because our or any other integration user would've read access to the repo but might not necessarily be admin.
For BitBucket Cloud
REPO_ADMIN rights are not required in BitBucket cloud (great!) but the POST URL there seems like it's creating webhooks only for a single user?
We just need to create webhook receiver for any repository that user is using with our integration. What's the recommended way for this?