Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
63e8dc8a
Commit
63e8dc8a
authored
Dec 21, 2016
by
Timothy Andrew
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Add documentation around OAuth/Personal Access Token scopes.
parent
7e88b242
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
13 additions
and
3 deletions
+13
-3
doc/api/README.md
doc/api/README.md
+8
-0
doc/integration/oauth_provider.md
doc/integration/oauth_provider.md
+5
-3
No files found.
doc/api/README.md
View file @
63e8dc8a
...
...
@@ -104,6 +104,13 @@ that needs access to the GitLab API.
Once you have your token, pass it to the API using either the
`private_token`
parameter or the
`PRIVATE-TOKEN`
header.
> [Introduced][ce-5951] in GitLab 8.15.
Personal Access Tokens can be created with one or more scopes that allow various actions
that a given token can perform. Although there are only two scopes available at the
moment –
`read_user`
and
`api`
– the groundwork has been laid to add more scopes easily.
At any time you can revoke any personal access token by just clicking
**Revoke**
.
### Session Cookie
...
...
@@ -380,3 +387,4 @@ programming languages. Visit the [GitLab website] for a complete list.
[
GitLab website
]:
https://about.gitlab.com/applications/#api-clients
"Clients using the GitLab API"
[
lib-api-url
]:
https://gitlab.com/gitlab-org/gitlab-ce/tree/master/lib/api/api.rb
[
ce-3749
]:
https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3749
[
ce-5951
]:
https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/5951
doc/integration/oauth_provider.md
View file @
63e8dc8a
...
...
@@ -74,8 +74,10 @@ in the **Authorized applications** section under **Profile Settings > Applicatio
---
As you can see, the default scope
`api`
is used, which is the only scope that
GitLab supports so far. At any time you can revoke any access by just clicking
**Revoke**
.
GitLab's OAuth applications support scopes, which allow various actions that any given
application can perform. Although there are only two scopes available at the
moment –
`read_user`
and
`api`
– the groundwork has been laid to add more scopes easily.
At any time you can revoke any access by just clicking
**Revoke**
.
[
oauth
]:
http://oauth.net/2/
"OAuth website"
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment