Bitbucket is a Git code management tool that provides teams one place to plan projects, collaborate on code, test, and deploy their applications

Authenticating

Bitbucket uses OAuth, a developer-friendly delegated access protocol. Quolum has already connected the necessary wires with BitBucket. Using a sequence of click-throughs, your organization's administrator allows Quolum to make API calls to Bitbucket without getting access to passwords.

Step 1: Initiate a connection to BitBucket

Click the Connect button from the Connections card. If you are not an admin, you can invite your organization's Bitbucket admin to make a connection to your Bitbucket organization account. When you click on the Connect button, the web browser will navigate to the Bitbucket login page.

Step 2: Log in to Bitbucket

Log in to Bitbucket using your organization's credentials. The exact login mechanism may depend on your Bitbucket plan, and the sign-in mechanism used. You may have corporate SSO such as Azure AD, GSuite, or Okta along with multi-factor authentication. Once you have successfully logged-in, Bitbucket is going to ask you to grant access to Quolum.

Step 3: Provide consent to Quolum

The next screen after login into Bitbucket is the consent screen. On this screen, Bitbucket confirms whether you authorize Quolum to access your organization's data.

Step 4: Back to Quolum

Once you have granted access to Quolum on Bitbucket's website, Bitbucket is going to send you back to Quolum's page in Step 1, where you started. The Connect button on the Connections card would now say Reconnect. Reconnect is used to reauthenticate under circumstances where the access has expired.

Under the hood

Using the OAuth protocol, Quolum now has delegated access to your Bitbucket Workspace. The Quolum server, running on Amazon AWS VPC, will be able to make API calls and retrieve feature-level utilization of projects, stories, and tasks. Later, this data is crunched and available for visualization on the Quolum dashboard.