Expose info via anonymously accessible REST API


I managed to write a Bitbucket Server plugin that lists certain repositories via a REST endpoint (the goal is to implement a shell command for developers to list Bitbucket repositories without having to enter any credentials).

I am already using the @AnonymousAllowed annontation on the resource. However, if unauthenticated access is made, my REST endpoint now always returns an empty list value: "[]".

Is it somehow possible to query the com.atlassian.bitbucket.project.ProjectService in the name of an adminstrator user within the plugin context?
Or is it possible to specify in the atlassian-plugin.xml that a given REST module is “public”?


Sure, just use the com.atlassian.bitbucket.user.SecurityService.