default security on repo allows push from random user?
Issue #6309
resolved
Hello, most likely I have something configured incorrectly but I was supprised when someone was able to push directly to the repo that I maintain.
Here is our discussion.
https://bitbucket.org/cleemesser/django-wsgiserver/issue/4/mediahandler-security-of-paths
Comments (5)
-
-
Hi,
I tried this out on my own public repository and I was unable to reproduce this scenario. A user should only be able to push to a repo if they have write access.
Could you please contact support@bitbucket.org. We will try and solve you issue from there.
Cheers, Brian
-
- changed status to on hold
-
- changed status to resolved
I'm preemptively resolving this as it's been over 2 weeks without further updates. Just reopen if you're still having problems.
-
-
assigned issue to
-
assigned issue to
- Log in to comment
In the admin section of that repository, is there anything listed under Access Management? That should let you know who has write access to that repository.