You can use your GitHub, Bitbucket, Azure DevOps, or GitLab account to sign up with CodeScene and analyze your repositories.
GITHUB
CodeScene provides full integration with GitHub and all codescene.io functionality has been thoroughly tested using our own GitHub accounts.
Required access
CodeScene needs access to your organizations to facilitate creating an organizational account. It needs repository (code) access to analyze your code. Unfortunately, GitHub OAuth apps cannot request read-only access to repositories. CodeScene will never do any write operations, except for PR Integration creating and editing Check Runs in your Pull Requests.
BITBUCKET
CodeScene provides integration with Bitbucket and all codescene.io functionality has been thoroughly tested. Pull Request Integration requires that our Atlassian Connect App is installed in participating workspaces.
Our Delta Analysis app - used to Integrate CodeScene with Pull Requests - has been published on Atlassian’s Marketplace.
Required access
CodeScene needs read-only access to your code and the ability to post pull request comments.
AZURE
CodeScene provides full integration with Azure DevOps, including Project management analyses of Work Items. Pull Request Integration is done using Service Hooks, expect them in your projects if you’re using the feature.
Required access
These are the features that require specific access:
-
Creating organization accounts, finding user projects: Project and team (read), Graph (read)
-
Analysis of code: Code (read)
-
PR Integration comments: PR threads
-
PR Integration Status Checks: Code (status)
-
Project Management Analyses: Work items (read)
CodeScene will add PR comments and Status Checks to your pull requests and it will add Service Hooks to receive PR-related events. Otherwise, CodeScene won’t perform write operations.
Unfortunately, it is not possible to register OAuth consumers with Azure DevOps that would have all potential scopes and then request a reduced scope of access based on your actual feature use. Azure OAuth server will throw an error if the requested scopes and OAuth App’s scopes don’t match exactly.
Resolving login issues
In some cases, when Azure DevOps organization was connected or disconnected from another Active Directory, there is a bug where Azure cannot map the user’s VSID to the descriptor (and therefore organization member). To address this issue you need to create a fresh new Organization (or have someone else create it and invite you to it), then you need to enable 3rd party app access in Organization Settings:
Select Policies and enable Third-party application access via OAuth, then try to log in. You can delete the organization used for this workaround after users have successfully logged in.
GITLAB
CodeScene provides full integration with GitLab. Merge Request Integration is done using Webhooks Hooks, expect them in your projects if you’re using the feature.
Required access
The access requested by our OAuth App is extensive. The reason is that the only way to clone a private GitLab project with an OAuth token is when the token has API access, which is read/write access to almost everything. As with GitHub, we never do any write operations except the Merge Request comments to post the results of the analysis.