Bitbucket

Overview

Firefly integrates with Bitbucket to connect your infrastructure code repositories with your cloud resources. This integration enables powerful features like tracing cloud resources back to their defining code ("Jump to Code") and automatically creating Pull Requests for newly codified resources and drift remediation.

Prerequisites

  • A Bitbucket account with access to your infrastructure repositories

  • Appropriate permissions to create App passwords

  • Repositories containing Terraform, CloudFormation, or other IaC files you want to connect to Firefly

Setup Procedure

Integrate Bitbucket Cloud

  1. Log in to your Bitbucket account

  2. Select Settings > Personal Bitbucket settings

  3. In the left pane, select App passwords

  4. Select Create app password

  5. Enter a Label and add the following scopes:

    • repositories:read

    • repositories:write

    • pullrequest:write

    • pullrequest:read

    • account:read

  6. Select Create and copy the password

  7. In Firefly, select Settings > Integrations > + Add new > Bitbucket

  8. Enter the required information and paste the app password into the App Password box

  9. Select Next

Integrate Bitbucket Data Center

  1. Log in to your Bitbucket Data Center account

  2. From the top-right corner, select Settings > Personal Bitbucket settings > App passwords > Create app password

  3. Enter a Label and add the following scopes:

    • repositories:read

    • repositories:write

    • pullrequest:write

    • pullrequest:read

    • account:read

  4. Select Create and copy the password

  5. In Firefly, select Settings > Integrations > + Add new > Bitbucket

  6. Enter the domain for your Bitbucket Data Center instance and paste the app password into the App Password box

  7. Select Next

Features Enabled

  • Jump to Code: Trace resources in your cloud inventory back to the Bitbucket file and specific line that defines them

  • Automated Pull Requests: When Firefly codifies an unmanaged resource, it can commit the new infrastructure code as a Pull Request

  • IaC Tracking: Firefly maintains awareness of which resources are defined in code and which are not

  • Drift Remediation: Firefly can detect drift between the code and the actual resources and create a Pull Request to fix it

Best Practices

  • Consider creating a dedicated Bitbucket user or bot account for Firefly to make tracking its contributions easier

  • Ensure the app password has appropriate permissions to create Pull Requests

  • Regularly review Pull Requests created by Firefly

  • For Bitbucket Data Center, ensure the domain URL is correct

Troubleshooting

  1. For authentication issues:

    • Verify Bitbucket credentials and permissions

    • Check if the app password has expired or been revoked

    • Ensure the app password has the correct scopes

  2. For repository access issues:

    • Verify the integration has access to the required repositories

    • Check workspace permissions if applicable

    • Review Firefly integration logs

Last updated

Was this helpful?