Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.iru.com/llms.txt

Use this file to discover all available pages before exploring further.

About Bitbucket Cloud

The Bitbucket Cloud connector collects repository, workspace, project, and team metadata your audits expect around change management and access reviews. Iru authenticates with HTTP Basic Auth: your Atlassian account email as the username and an Atlassian API token as the password (plain passwords are rejected).

How it works

Clients send Base64-encoded credentials: 
Authorization: Basic base64(email:api_token)
Atlassian is deprecating app passwords - create API tokens for new work and migrate anything still using legacy secrets before they sunset.
DetailValue
CategoryDeveloper tools
AuthenticationBasic auth (email + API token)
Documentation: Manage API tokens, Bitbucket API tokens, REST intro.

Prerequisites

  • Access to Bitbucket workspaces you expect evidence from.
  • Permission to create API tokens on your Atlassian ID.

Connect Bitbucket Cloud to Iru

Bitbucket Cloud

1

Open API token creation

Select your Atlassian profile icon → Account settingsSecurityCreate and manage API tokensCreate API token with scopes.
2

Configure the token

Give the token a label (for example Iru Compliance). Choose an expiry (tokens last up to 365 days). Grant read scopes on repositories, workspaces, and teams so they align with what your controls reference.
3

Copy the token

Copy the token immediately; Atlassian shows it once.

Iru Compliance

1

Open Sources

In Iru Compliance, on the left navigation bar, expand Compliance and select Sources.
Left navigation: Compliance expanded, Sources selected
2

Turn on Bitbucket

Find Bitbucket (use Category or Search by name or description). On that card, turn on the toggle. A browser tab or window may open for the connector wizard.
3

Enter Basic authentication

When the wizard asks for Basic authentication, enter your Atlassian email as the username and the API token as the password.
4

Confirm the source is Active

After verification succeeds, the Bitbucket card shows Active.

Troubleshooting

Check pop-up blocker settings for the Iru site and try again.
Use email + API token, not Bitbucket username and not your Atlassian password.
Mint a new token under Account settings and update Iru.
Ensure the Atlassian account belongs to every workspace you expect data from.
Replace with API tokens - app passwords are deprecated.

Considerations

Tokens expire: calendar reminders prevent silent…

Tokens expire - calendar reminders prevent silent outages.

Read scopes keep Iru from mutating repos or pull…

Read scopes keep Iru from mutating repos or pull requests.

See also