Introduction
OAuth is a protocol through which applications can be authorized to share private data. bitbucket's OAuth support enables third-party applications to interact with repositories hosted on the site.
An IDE, for example, could sync a bitbucket repository in response to local changes, or an iPhone app could provide a custom UI for managing issues tracked on bitbucket.
Authentication
We support basic authentication and OAuth 1.0a for all authentication and authorisation purposes. See RFC 2617 & RFC 5849.
For example, the following cURL request includes basic authentication where the username and password are both 'admin':
We also support OAuth 1.0a across the API. The 3 important URLs you need to know to get started are:
- Request token: https://bitbucket.org/api/1.0/oauth/request_token/
- Authenticate: https://bitbucket.org/api/1.0/oauth/authenticate/
- Access token: https://bitbucket.org/api/1.0/oauth/access_token/
Numerous reusable libraries in many languages have been crafted for use with OAuth -- they can be found on the official oauth.net 'code' section.
Requesting an OAuth Consumer
OAuth needs a 'consumer' defined, with both a key and a secret known to both the client and the server.
If you need to register a consumer with us, please contact us on support@bitbucket.org with the following information:
- Username
- Name of the application you are working on
- A brief description of the application
We'll reply shortly with your keys so you can get started on working on your Bitbucket application!
Add Comment