Provide additional controls for group & repository management in teams

Issue #14008 open
Alex Kochnev
created an issue

Ideally, when I manage access to repositories and groups in my organization, I need to make sure that I don't accidentally add someone from outside of the organization. Currently, BitBucket seems to focus on allowing me to add ANYONE from anywhere on bitbucket, and doesn't help much with controlling that.

For example, when adding members to the organization, I would like to have some kind of verification of their account - seeing names, possibly picture, etc. Currently, if I did that, I only see a little dropdown for autocomplete which is supposed to be enough for me to verify that this is indeed the right user.

Similarly, when I add users to groups within my team, I would like to ALWAYS prefer users from the organization, and have some kind of warning if I add a user to a group (or a repository) from outside of the organization.

Comments (2)

  1. Alastair Wilkes staff

    Hi Alex,

    Thanks for the feedback! This is definitely something we're looking into improving. As you mention with your suggestions, there are a few things we can do here.

    To help with this, we recently added a warning that shows up when you attempt to add a user directly to a team repository who is not part of your team.

    We could definitely add more control around this, but we hope this is a good (and lightweight) first step.

    Alastair

  2. Log in to comment