Skip to content
/ bbapiclient Public

Minimal Oauth client to interact with BitBucket rest api

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

moldiscovery/bbapiclient

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

34 Commits
migration_files
migration_files
 
 
.gitignore
.gitignore
 
 
BBclient.py
BBclient.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
bbcli.py
bbcli.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Minimal Oauth client to interact with BitBucket rest api

This script was almost copied from ayush-sharma DevOps tools

Requirements:

  • Python >= 3
  • requests
  • requests-oauthlib

installation (I suggest to setup a virtualenv)

pip install -r requirements.txt

Setup and Usage

  • Go Bitbucket account settings -> OAuth -> Add Consumer

Set

  • Repositories = Read
  • Account = Write
  • Callback URL = https://localhost
  • This is a Private consumer = True

Once created take the account_id, key and secret and set the following variables in your environment:

 - BB_ACCOUNT_ID
 - BB_OAUTH_ID
 - BB_OAUTH_SECRET

Whenever command you'll have to:

  • Browse the given URL in your browser
  • copy the url generated by the BB 2FA from the navigation bar and feed the script with it

Some tips on usage:

List repos

$ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py --operation listrepos --filereport

Get group info:

$ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py  --operation groupinfo --group foode

Set all repos permission ( IMPORTANT: if no group exist in the repos it will be created ):

    $ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py  --operation permissions --repoall --group foo  --grant read

Set repo permission example:

$ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py  --operation permissions --group foo --repo bar --grant read

Migration Operations

Collect backup infos for each group with

$ BB_ACCOUNT_ID=moldiscovery BB_OAUTH_ID={key} BB_OAUTH_SECRET={secret} python bbcli.py --operation groupinfo --group groupname1  --filereport
$ BB_ACCOUNT_ID=moldiscovery BB_OAUTH_ID={key} BB_OAUTH_SECRET={secret} python bbcli.py --operation groupinfo --group groupname2  --filereport
$ ..

Named report files will be created on the execution with format group_groupname_info.csv .

We're now ready to run for each users group ( few so it's not automatic ) this command:

$ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py  --operation permissions --group foo --grant read
$ BB_ACCOUNT_ID=id BB_OAUTH_ID=key BB_OAUTH_SECRET=secret python bbcli.py  --operation permissions --group bar --grant read
..

At the end all groups will have raed-only access to their repos

Fail Back to previous group permissions

It is possible to restore the group permissions as before the migration by issuing

$ BB_ACCOUNT_ID=moldiscovery BB_OAUTH_ID={key} BB_OAUTH_SECRET={secret} python bbcli.py --operation restoregroupsgrant --group groupname --backupfilepath pathto/group_groupname_info.csv

ISSUES

Due to the lack of endpoints in BB API1.0 and 2.0 it's not possibile to change user permissions over repoistories, this must be done manually or just do not give user specific permissions on repos, use groups for any user and you'll be fine

About

Minimal Oauth client to interact with BitBucket rest api

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages