2018-08-08 17:59:46 -04:00
|
|
|
# Integrate your GitLab server with Bitbucket Cloud
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2018-07-06 13:55:16 -04:00
|
|
|
NOTE: **Note:**
|
2020-02-25 22:09:07 -05:00
|
|
|
Starting from GitLab 11.4, OmniAuth is enabled by default. If you're using an
|
|
|
|
earlier version, you'll need to explicitly enable it.
|
2018-07-06 13:55:16 -04:00
|
|
|
|
2016-08-30 11:52:14 -04:00
|
|
|
Import projects from Bitbucket.org and login to your GitLab instance with your
|
|
|
|
Bitbucket.org account.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2016-08-30 09:42:40 -04:00
|
|
|
## Overview
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2016-12-19 13:44:57 -05:00
|
|
|
You can set up Bitbucket.org as an OAuth2 provider so that you can use your
|
2016-08-30 11:52:14 -04:00
|
|
|
credentials to authenticate into GitLab or import your projects from
|
|
|
|
Bitbucket.org.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2016-08-30 11:52:14 -04:00
|
|
|
- To use Bitbucket.org as an OmniAuth provider, follow the [Bitbucket OmniAuth
|
2016-08-30 09:42:40 -04:00
|
|
|
provider](#bitbucket-omniauth-provider) section.
|
|
|
|
- To import projects from Bitbucket, follow both the
|
|
|
|
[Bitbucket OmniAuth provider](#bitbucket-omniauth-provider) and
|
|
|
|
[Bitbucket project import](#bitbucket-project-import) sections.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2016-08-30 09:42:40 -04:00
|
|
|
## Bitbucket OmniAuth provider
|
|
|
|
|
2020-07-23 14:10:06 -04:00
|
|
|
NOTE: **Note:**
|
2016-12-16 08:54:23 -05:00
|
|
|
GitLab 8.15 significantly simplified the way to integrate Bitbucket.org with
|
2018-07-10 06:50:17 -04:00
|
|
|
GitLab. You are encouraged to upgrade your GitLab instance if you haven't done so
|
|
|
|
already. If you're using GitLab 8.14 or below, [use the previous integration
|
2019-11-12 01:06:32 -05:00
|
|
|
docs](https://gitlab.com/gitlab-org/gitlab/blob/8-14-stable-ee/doc/integration/bitbucket.md).
|
2016-08-30 09:42:40 -04:00
|
|
|
|
|
|
|
To enable the Bitbucket OmniAuth provider you must register your application
|
2016-08-30 11:52:14 -04:00
|
|
|
with Bitbucket.org. Bitbucket will generate an application ID and secret key for
|
2016-08-30 09:42:40 -04:00
|
|
|
you to use.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2019-07-11 11:21:26 -04:00
|
|
|
1. Sign in to [Bitbucket.org](https://bitbucket.org).
|
|
|
|
1. Navigate to your individual user settings (**Bitbucket settings**) or a team's
|
|
|
|
settings (**Manage team**), depending on how you want the application registered.
|
|
|
|
It does not matter if the application is registered as an individual or a
|
|
|
|
team, that is entirely up to you.
|
|
|
|
1. Select **OAuth** in the left menu under "Access Management".
|
|
|
|
1. Select **Add consumer**.
|
|
|
|
1. Provide the required details:
|
|
|
|
|
|
|
|
| Item | Description |
|
|
|
|
| :--- | :---------- |
|
|
|
|
| **Name** | This can be anything. Consider something like `<Organization>'s GitLab` or `<Your Name>'s GitLab` or something else descriptive. |
|
|
|
|
| **Application description** | Fill this in if you wish. |
|
|
|
|
| **Callback URL** | The URL to your GitLab installation, e.g., `https://gitlab.example.com/users/auth`. |
|
|
|
|
| **URL** | The URL to your GitLab installation, e.g., `https://gitlab.example.com`. |
|
|
|
|
|
|
|
|
NOTE: Be sure to append `/users/auth` to the end of the callback URL
|
|
|
|
to prevent a [OAuth2 convert
|
|
|
|
redirect](http://tetraph.com/covert_redirect/) vulnerability.
|
|
|
|
|
|
|
|
NOTE: Starting in GitLab 8.15, you MUST specify a callback URL, or you will
|
|
|
|
see an "Invalid redirect_uri" message. For more details, see [the
|
|
|
|
Bitbucket documentation](https://confluence.atlassian.com/bitbucket/oauth-faq-338365710.html).
|
|
|
|
|
|
|
|
And grant at least the following permissions:
|
|
|
|
|
2020-03-23 23:09:28 -04:00
|
|
|
```plaintext
|
2019-07-11 11:21:26 -04:00
|
|
|
Account: Email, Read
|
|
|
|
Projects: Read
|
|
|
|
Repositories: Read
|
|
|
|
Pull Requests: Read
|
|
|
|
Issues: Read
|
|
|
|
Wiki: Read and Write
|
|
|
|
```
|
|
|
|
|
|
|
|
![Bitbucket OAuth settings page](img/bitbucket_oauth_settings_page.png)
|
|
|
|
|
|
|
|
1. Select **Save**.
|
|
|
|
1. Select your newly created OAuth consumer and you should now see a Key and
|
|
|
|
Secret in the list of OAuth consumers. Keep this page open as you continue
|
|
|
|
the configuration.
|
|
|
|
|
|
|
|
![Bitbucket OAuth key](img/bitbucket_oauth_keys.png)
|
|
|
|
|
|
|
|
1. On your GitLab server, open the configuration file:
|
|
|
|
|
2020-03-23 23:09:28 -04:00
|
|
|
```shell
|
2019-07-11 11:21:26 -04:00
|
|
|
# For Omnibus packages
|
|
|
|
sudo editor /etc/gitlab/gitlab.rb
|
|
|
|
|
|
|
|
# For installations from source
|
|
|
|
sudo -u git -H editor /home/git/gitlab/config/gitlab.yml
|
|
|
|
```
|
|
|
|
|
|
|
|
1. Add the Bitbucket provider configuration:
|
|
|
|
|
|
|
|
For Omnibus packages:
|
|
|
|
|
|
|
|
```ruby
|
|
|
|
gitlab_rails['omniauth_providers'] = [
|
|
|
|
{
|
|
|
|
"name" => "bitbucket",
|
|
|
|
"app_id" => "BITBUCKET_APP_KEY",
|
|
|
|
"app_secret" => "BITBUCKET_APP_SECRET",
|
|
|
|
"url" => "https://bitbucket.org/"
|
|
|
|
}
|
|
|
|
]
|
|
|
|
```
|
|
|
|
|
|
|
|
For installations from source:
|
|
|
|
|
|
|
|
```yaml
|
|
|
|
omniauth:
|
|
|
|
enabled: true
|
|
|
|
providers:
|
|
|
|
- { name: 'bitbucket',
|
|
|
|
app_id: 'BITBUCKET_APP_KEY',
|
|
|
|
app_secret: 'BITBUCKET_APP_SECRET',
|
|
|
|
url: 'https://bitbucket.org/' }
|
|
|
|
```
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
Where `BITBUCKET_APP_KEY` is the Key and `BITBUCKET_APP_SECRET` the Secret
|
|
|
|
from the Bitbucket application page.
|
|
|
|
|
|
|
|
1. Save the configuration file.
|
2020-04-06 08:10:44 -04:00
|
|
|
1. For the changes to take effect, [reconfigure GitLab](../administration/restart_gitlab.md#omnibus-gitlab-reconfigure) if you installed via
|
|
|
|
Omnibus, or [restart](../administration/restart_gitlab.md#installations-from-source) if installed from source.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2016-08-30 09:42:40 -04:00
|
|
|
On the sign in page there should now be a Bitbucket icon below the regular sign
|
|
|
|
in form. Click the icon to begin the authentication process. Bitbucket will ask
|
|
|
|
the user to sign in and authorize the GitLab application. If everything goes
|
2016-08-30 11:52:14 -04:00
|
|
|
well, the user will be returned to GitLab and will be signed in.
|
2015-02-18 16:42:52 -05:00
|
|
|
|
|
|
|
## Bitbucket project import
|
|
|
|
|
2016-12-16 08:54:23 -05:00
|
|
|
Once the above configuration is set up, you can use Bitbucket to sign into
|
2020-04-06 08:10:44 -04:00
|
|
|
GitLab and [start importing your projects](../user/project/import/bitbucket.md).
|
2015-02-18 16:42:52 -05:00
|
|
|
|
2018-07-10 06:50:17 -04:00
|
|
|
If you want to import projects from Bitbucket, but don't want to enable signing in,
|
|
|
|
you can [disable Sign-Ins in the admin panel](omniauth.md#enable-or-disable-sign-in-with-an-omniauth-provider-without-disabling-import-sources).
|