The owners of these tokens are notified by email. GitLab runs a check at 01:00 AM UTC every day to identify personal access tokens that expire in the next seven days.Personal access tokens expire on the date you define, at midnight, 00:00 AM UTC. Disable external authorization to use personal access tokens with container or package registries. If you use personal access tokens to access these registries, this measure breaks this use of these tokens. If you enabled external authorization, personal access tokens cannot access container or package registries. K8s_proxy Grants permission to perform Kubernetes API calls using the agent for Kubernetes. For all other extensions, see scope requirements. This scope is designed to work with the GitLab Duo Plugin for JetBrains. ( Introduced in GitLab 15.8.)Ĭreate_runner Grants permission to create runners.Īi_features Grants permission to perform API actions for GitLab Duo. Sudo Grants permission to perform API actions as any user in the system, when authenticated as an administrator.Īdmin_mode Grants permission to perform API actions as an administrator, when Admin Mode is enabled. Available only when the container registry is enabled. Write_registry Grants read-write (push) access to container registry images if a project is private and authorization is required. Read_registry Grants read-only (pull) access to container registry images if a project is private and authorization is required. Write_repository Grants read-write access to repositories on private projects using Git-over-HTTP (not using the API). Read_repository Grants read-only access to repositories on private projects using Git-over-HTTP or the Repository Files API. Read_api Grants read access to the API, including all groups and projects, the container registry, and the package registry. Also grants access to read-only API endpoints under /users. Read_user Grants read-only access to the authenticated user’s profile through the /user API endpoint, which includes username, public email, and full name. Feature flag k8s_proxy_pat removed in GitLab 16.5.Ī personal access token can perform actions based on the assigned scopes.Īpi Grants complete read/write access to the API, including all groups and projects, the container registry, the dependency proxy, and the package registry.k8s_proxy introduced in GitLab 16.4 with a flag named k8s_proxy_pat.Personal access tokens no longer being able to access container or package registries introduced in GitLab 16.0.To do this, you can append a name parameter and a list of comma-separated scopes You can link directly to the Personal Access Token page and have the form prefilled with a name and Prefill personal access token name and scopes Save the personal access token somewhere safe. By default, this date can be a maximum of 365 days later than the current date.If you do not enter an expiry date, the expiry date is automatically set to 365 days later than the current date.The token expires on that date at midnight UTC.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |