Question: Do we have to invite 1 per 1 user on bitbucket? how to maintain the existing user id? (How to restrict).
Goals: We want emails contained in azure AD to be accessible on bitbucket.
Constraints: what kind of flow for the best solution, if there are developers who need access to bitbucket? Because there are 70 of them (manual invites are not efficient). How to invite them and prevent outsiders from accessing the azure AD repository.
Bitbucket Cloud doesn't support provisioning users from an external directory at the moment. This feature is in our roadmap for 2023:
It is tracked in the following ticket in our issue tracker (you can add yourself as a watcher if you'd like to get notified via email on updates):
In the meantime, if you invite users from the website, you need to invite them one at a time. We have API endpoints to issue an invitation as well:
For inviting a user to a certain repository only https://support.atlassian.com/bitbucket-cloud/docs/invitations-endpoint/
For inviting a user to a workspace's user group https://support.atlassian.com/bitbucket-cloud/docs/invitations-resource/
You would still need to provide each member's email address even with API calls.
Restricting user invitations to a specific domain only is also not possible at the moment, however, this is also something that we are working to add. You can add yourself as a watcher to the following ticket if you'd like to get notified via email on updates: https://jira.atlassian.com/browse/BCLOUD-19685