Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

ssh read/write access keys

Everett Carter
Everett Carter June 20, 2019

I am migrating from on prem to cloud bitbucket.  How do I create R/W acess keys ?

Answer
Watch
Like Be the first to like this
457 views

1 answer

0 votes
Stephen Sifers
Stephen Sifers
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 21, 2019

Hello Everett,

Within Bitbucket cloud you’re going to have to complete a few steps to get your SSH key setup. There is a detailed guide to walk you through this process. You may find the guide at Set up an SSH key.

I hope this information proves helpful and you’re able to set up your cloud SSH keys.

Regards,
Stephen Sifers

View More Comments
Daniil Penkin
Daniil Penkin
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 21, 2019

Just a little note in addition to @Stephen Sifers's reply: the access SSH key in Bitbucket Cloud only provides read-only access to the repo.

To make changes you'd need to act on behalf of some user (which might be a bot) and authenticate with one of the following: SSH key, OAuth token, password or app password.

Hope this helps.

Cheers,
Daniil

Like Stephen Sifers likes this
Everett Carter
Everett Carter June 21, 2019

Why this change ?  This change could be a show stopper for us!

Like
Everett Carter
Everett Carter June 21, 2019

or teach my bots oauth

Like
Daniil Penkin
Daniil Penkin
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
June 21, 2019

Why this change?

It was always like that. Just to be clear, here's the difference between normal and access SSH keys:

  • regular SSH keys are configured for a user. These keys are granted with all permissions that user has. So let's say you have write access to repo A and only read access to repo B – with any regular SSH key configured in your account you'll be able to pull and push to repo A but only pull from repo B.
  • access SSH keys are in turn configured for a repository. These keys are granted only with read access to that specific repository, and nothing else. This also means that you can't use an SSH key that is already used elsewhere in Bitbucket. Such key can be used, for instance, by a CI server to clone the repo, but it can't be used to push anything back. This was always the case, there was never a way to configure a "headless" SSH key with write privilege.

Using OAuth authentication isn't actually too hard, take a look at this example. Note that authenticating with OAuth means that any actions will be performed on your behalf (as if you did it) with a constraint of the configured OAuth consumer scope.

Let me know if this helps.

Cheers,
Daniil

Like Stephen Sifers likes this
Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events