Trying to automate things on my server, I ended up needing read-only for one group of my bitbucket repos and read-write access to another group.
On bitbucket, if read-only access is required for a repository, a deployment key can be added for that repository.
Create one ssh key that will be a deployment, read-only key:
user@server$ ssh-keygen -f ~/.ssh/id_rsa_ro -t rsa -C "firstname.lastname@example.org"
and add it to repositories needing read-only access.
Create a second ssh key that will be used for repositories needing read and write access:
user@server$ ssh-keygen -f ~/.ssh/id_rsa_rw -t rsa -C "email@example.com"
and add it as an ssh key under your bitbucket account.
Next, configure ssh a bit, telling it what identity to use for what host by adding something like this to the
Host bitbucket.org-ro HostName bitbucket.org IdentityFile ~/.ssh/id_rsa_ro Host bitbucket.org-rw HostName bitbucket.org IdentityFile ~/.ssh/id_rsa_rw Host
With all that in place, for repositories where read-only access is needed, set the remote url for the origin like:
git remote set-url origin firstname.lastname@example.org:user/repo_with_ro_access.git
and where read-write access is needed:
git remote set-url origin email@example.com:user/repo_with_rw_access.git
Now for repositories with the
bitbucket.org-ro hostname I have read-only access and for repositories with the
bitbucket.org-rw hostname read and write access. Neat.