The purpose of this section is to describe how to authenticate when making API calls using the Bitbucket REST API.

• Basic auth
• Access Tokens
  • Repository Access Tokens
  • Project Access Tokens
  • Workspace Access Tokens
• App passwords
• OAuth 2.0
  • Making requests
  • Repository cloning
  • Refresh tokens
• Bitbucket OAuth 2.0 Scopes
• Forge App Scopes

Basic auth

Basic HTTP Authentication as per RFC-2617 (Digest not supported). Note that Basic Auth is available only with username and app password as credentials.

Access Tokens