Configure an outgoing link

On this page

Still need help?

The Atlassian Community is here for you.

Ask the community

When you configure an outgoing link to an external application, Bitbucket requests data from this application, which means that it acts as the OAuth client.

We’ve added support for this scenario for future use. Currently, none of the functionalities in Bitbucket use the OAuth 2.0 client role. If you’d like to use Bitbucket as the OAuth 2.0 provider, see Configuring an incoming link.

You need to ensure the following:

To create an outgoing link:

  1. Go to Administration > Applications > Application links.

  2. Select Create link.

  3. Select External application, and then choose Outgoing as the direction.

  4. Fill in the details as described in the sections below.

Follow these steps to configure your link.

Choose one of the following providers that you want to configure. For Google and Microsoft, some of the fields will be pre-filled.

  • Google

  • Microsoft

  • Custom (for internal tools or other providers)

Copy the Redirect URL and register it in your external application to obtain the client ID and client secret required to complete the configuration.

If you’re using Google or Microsoft as service providers, you’ll be able to copy the Redirect URL right away. For custom providers, you need to first provide the Authorization endpoint and Token endpoint. For more info on registering the URL with Google or Microsoft, see:

Different providers might have different requirements related to the redirect URL. For example, Google does not allow it to be a private IP address. Make sure you provide an external URL (for example of a load balancer for Data Center).

Provide the remaining details. Here you can find descriptions for all the fields:

Client IDThe client ID generated by the external application after registering Bitbucket’s Redirect URL. This is the public identifier of the application.
Client secretThe client secret generated by the external application after registering Bitbucket’s Redirect URL. This is the shared secret between Jira and the application, which ensures the authorization is secure.
ScopesThe required OAuth 2.0 scopes (permissions) that control what Bitbucket can do in the external application.
Authorization endpointThe HTTPS URL where authorization to use OAuth 2.0 is started.
Token endpointThe HTTPS URL where refresh token requests are sent. As OAuth 2.0 tokens have an expiry, Bitbucket will periodically update the token.
Redirect URLThe Redirect URL that must be registered in the external application to obtain its client ID and client secret. This redirects the authentication flow back to Bitbucket.

After you save the link, it will appear on the list together with other application links.

Last modified on Nov 8, 2022

Was this helpful?

Provide feedback about this article
Powered by Confluence and Scroll Viewport.