Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more

Atlassian Community about banner

4,556,311

Community Members

Community Events

184

Community Groups

Community
Products
Bitbucket
Questions
Is it possible to restrict pushing Git tags to certain users in a Bitbucket repo?

Is it possible to restrict pushing Git tags to certain users in a Bitbucket repo?

I've had a few instances where developers have pushed tags accidentally/in error. After this point it's really difficult to get rid of them in a big team as - once they're on the remote - they tend to keep reappearing even if they're deleted as other developers end up with them in their local repos.

It would be amazing if it was possible to restrict who had permission to push tags to a Bitbucket hosted Git repo in the first place. It feels as if it should be possible given that I guess it could be achieved in a pre-receive hook, similarly to how I imagine the branch permissions are implemented?

4 answers

1 accepted

1 vote

Answer accepted

We do not offer this feature now, but we're always accepting Proposals at bitbucket.org/site/master.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Reply

4 votes

Can anyone advise me on this. I have tried using the above documentation. If I set branch permissions to refs/tags/* or just tags/* and make sure I don't select any users (nobody has write access) it still lets me push new tags. Does anyone else experience this?

Presumably this is because, like branches, it does not affect creating new ones, it only affects changing existing ones.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

I get the same.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Is there any update to this?

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

I dont understand it. Branch-Restrictions with wildcards work without problems, tag restrictions dont?

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Reply

1 vote

For what it's worth, it appears that this is now possible. According to this documentation:

Using branch permissions, add the following branch permission pattern:
refs/tags/*
Restrict it to an admin account so that no other users can push tags.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

p.s. @John Garcia my first attempt at posting this comment resulted in JavaScript console errors; I think because it contained HTML from copying from the documentation page. Something I didn't realize until posting a partial comment so I could get the full comment in via editing (on the dedicated edit page) which then finally surfaced the error message. Bug on your end? See below.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like

Reply

0 votes

Thanks @John Garcia [Atlassian]. I've raised it.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Reply

Suggest an answer

Log in or Sign up to answer

Was this helpful?

Thanks!

TAGS