How to check which projects and build plans have anonymous access enabled in Bamboo
Platform notice: Server and Data Center only. This article only applies to Atlassian products on the Server and Data Center platforms.
Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Summary
This article describes how to check which projects and build plans have anonymous access enabled in Bamboo through the database. In certain situations, a company might want to check if anonymous access was left enabled in projects or build plans, usually for security or auditing reasons. Instead of checking every entry individually, this article offers a way to look for this information directly in the database.
For reference and guidance on how to check permissions through the Bamboo UI, please check our official documentation: Bamboo permissions.
Environment
Any supported Bamboo version.
Solution
The following query will list all projects with Anonymous access enabled:
SELECT p.project_key,
p.title FROM project p,
acl_entry ae,
acl_object_identity aoi
WHERE aoi.object_id_identity = p.project_id
AND aoi.id = ae.acl_object_identity
AND ae.sid = 'ROLE_ANONYMOUS'
AND aoi.object_id_class = 'com.atlassian.bamboo.project.DefaultProject';The following query will list all build plans with Anonymous access enabled:
SELECT b.full_key,
b.title FROM build b,
acl_entry ae,
acl_object_identity aoi
WHERE aoi.object_id_identity = b.build_id
AND aoi.id = ae.acl_object_identity
AND ae.sid = 'ROLE_ANONYMOUS'
AND aoi.object_id_class = 'com.atlassian.bamboo.chains.DefaultChain';