Pre-receive hook for rejecting large files

Another option that would not require an app would be to create your own client side hook and store it in a repository, see Including Hooks in a Git Repository. The drawback is that you have to make sure each client is configured to use the hooks.

The reason the "installation instructions" lead to a broken page is probably because that particular app is not compatible with Bitbucket 6.x.  According to the marketplace page you linked to, its most recent compatibility range was:

Bitbucket Server 5.2.0 - 5.16.10

p.s. On October 8th, 2019, we (bit-booster) released a new version of our free Control Freak plugin that now includes the ability to block large files from being pushed into Bitbucket Server or Data Center.  See our separate answer on this thread below for more information.

Ah, I see. Thanks for the advice. I will look into those options. Maybe I'll create a new app for the marketplace that does this.

Thanks @Julius Davies [bit-booster.com] ! Control Freak is just what I was looking for.

For client-side hooks use https://github.com/gabyx/githooks
For server-side this can be used as well.

I have a question about this: If I'm trying to push a large file, will the file be uploaded and THEN processed, or is the git client telling the server "hey, I have a large file to upload, may I?" and the server will stop the file from going through the network if the check fails?

Thank you!

Pete,

I could add an additional filter to my free Control-Freak plugin.  Right now it does this:

[x] - Block large files. Maximum allowed file size (bytes): [     ]

[x] - Encourage Git LFS in push rejection message.

I *could* add the following control:

[x] - Only block large files that end in the following extensions: [ <comma-separated> ] (e.g., *.zip, *.exe, *.pdf, *.jar)

Is that what you need?  Note: files that fall below (or equal) to the threshold would never be blocked, even if they had the bad file extension. Set the threshold to zero to completely ban that file type.

Yes, I believe that it would. 

Okay!  Done!  Look for v2019.10.20 of Control Freak in marketplace.atlassian.com.

Screenshot:

Consequence for a push with large files:

remote: Control Freak
remote: -----
remote: Push rejected.
remote: All files larger than 10 bytes are not permitted.
remote: Specific files [*.exe, *.pdf, *.zip] larger than 5 bytes are also not permitted.
remote: The following files are too large:
remote: 
remote: binary/f.exe (7 bytes)
remote: binary/g.zip (7 bytes)
remote: 
remote: You can push large files to this repository using 'git lfs':
remote: git lfs track <path>
remote: 

Very nice. Should issues with my hand-written pre-receive hook pop up, I'll be sure to give Control Freak a look. 

It is very nice, but if I can suggest an improvement: it is possible to disable Git LFS in the Bitbucket server settings. Can you also take the value of this option into account in order to disable the part of the message that suggests to use the "git lfs" command ? The option should be kept in Control Freak, but it shouldn't be taken into account if Git LFS is disabled in the server settings.

I have done a quick test and unfortunately I confirm it's not working for me either (version 2020.02.07)

Are you sure?  This is working for me (I'm the primary maintainer of this plugin):

remote: Control Freak: Push rejected.
remote: 
remote: Control Freak
remote: -----
remote: Push rejected.
remote: All files larger than 500 bytes are not permitted.
remote: Specific files [*.exe, *.pdf, *.zip] larger than 200 bytes are also not permitted.
remote: The following file is too large:
remote: 
remote: test.pdf (1723760 bytes)
remote: 
remote: You can push large files to this repository using 'git lfs':
remote: git lfs track <path>
remote: 

There is one important loophole to know about with this control:  any file that already exists in the repo (on any branch or tag, including unreachable tags or branches, and including files deleted many commits ago - they are still present in the repo) cannot be blocked (based on contents, not based on filename).  The control only gets triggered during the phase where git-receive is calculating missing files to accept during the push, and since git-receive skips files that already exist on the server, regardless of their name, there is no way to block those.

This means developers can also easily get around the control:  "git push random-file.allowed" and then rename to "random-file.pdf" in a later push.

Is there any chance you guys are hitting against this loophole, where byte-for-byte identical files (regardless of name) cannot be blocked if they are already present in bitbucket?

p.s.  the control happily accepts all of these:  pdf, .pdf, *.pdf

(they all evaluate to the same file type)

I have done a few more tests this morning and in my case it's possible I was into this loophole in my previous tests.

Please, note however that if you don't specify a maximum size (it is not very clear that it is a mandatory field), I believe it should take a size of '0' bytes as default. I don't know if there is a default size at the moment, but it doesn't seem to block anything unless you specify the size (also there is just one pattern both for the filename and for the size; this limits the possibilities).

You say above that all the pdf, .pdf, and *.pdf evaluate to the same file type. Could you also indicate if it is possible to use more complex patterns or even regular expressions ? Thank you.

I know this addition is not very old in the Control Freak plugin, and I just try to suggest improvements. This is not criticism, only suggestions.

Thank you very much for your work on this feature, and on this plugin in general.

Yes, you can use Control Freak. It is very well done: you have configuration options for the whole Bitbucket instance, but all the settings can be overriden both at the Git project level and at the repository level. So, it allows for very fine tuned settings.