Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-20061

Adding an SSH Access Key to a Specific Repository Grants SSH Access to All Public Repositories

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Low Low
    • None
    • 9.4.5, 9.6.1
    • Access Keys, SSH
    • None

      Issue Summary

      • Adding an SSH access key to a specific repository unexpectedly grants SSH access to all public repositories.

      Steps to Reproduce

      • Create Public repo.
      • Create a Private repo.
      • Attempt to clone the public repository via SSH – the operation should fail.
      • Generate an SSH Access key and add it to the private repository.
      • Attempt to clone the public repository again – this time, it succeeds.

      Expected Results

      • Bitbucket should enforce SSH access key boundaries, preventing SSH cloning of public repositories unless the key is explicitly added to the repository or user profile.

      Actual Results

      • Addition of access key to seperate repository enables access to all Public repository over ssh.

      Workaround

              Unassigned Unassigned
              ce91f45cf510 Karthik Mahesh
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: