search

How do I get access token?

1 years ago
Komentar: 0
Dibaca: 85

  • Create a personal access token
    • Prefill personal access token name and scopes
  • Revoke a personal access token
  • View the last time a token was used
  • Personal access token scopes
  • When personal access tokens expire
  • Create a personal access token programmatically
  • Revoke a personal access token programmatically
  • Troubleshooting
    • Unrevoke a personal access token
  • Alternatives to personal access tokens

Version history

Show

  • Notifications for expiring tokens introduced in GitLab 12.6.
  • Token lifetime limits introduced in GitLab 12.6.
  • Additional notifications for expiring tokens introduced in GitLab 13.3.
  • Prefill for token name and scopes introduced in GitLab 14.1.

Personal access tokens can be an alternative to OAuth2 and used to:

  • Authenticate with the GitLab API.
  • Authenticate with Git using HTTP Basic Authentication.

In both cases, you authenticate with a personal access token in place of your password.

Personal access tokens are:

  • Required when two-factor authentication (2FA) is enabled.
  • Used with a GitLab username to authenticate with GitLab features that require usernames. For example, GitLab-managed Terraform state backend and Docker container registry,
  • Similar to project access tokens and group access tokens, but are attached to a user rather than a project or group.

For examples of how you can use a personal access token to authenticate with the API, see the API documentation.

Alternately, GitLab administrators can use the API to create impersonation tokens. Use impersonation tokens to automate authentication as a specific user.

Create a personal access token

Introduced in GitLab 15.3, default expiration of 30 days is populated in the UI.

You can create as many personal access tokens as you like.

  1. In the top-right corner, select your avatar.
  2. Select Edit profile.
  3. On the left sidebar, select Access Tokens.
  4. Enter a name and optional expiry date for the token.
  5. Select the desired scopes.
  6. Select Create personal access token.

Save the personal access token somewhere safe. After you leave the page, you no longer have access to the token.

Prefill personal access token name and scopes

You can link directly to the Personal Access Token page and have the form prefilled with a name and list of scopes. To do this, you can append a name parameter and a list of comma-separated scopes to the URL. For example:

https://gitlab.example.com/-/profile/personal_access_tokens?name=Example+Access+token&scopes=api,read_user,read_registry

Revoke a personal access token

At any time, you can revoke a personal access token.

  1. In the top-right corner, select your avatar.
  2. Select Edit profile.
  3. On the left sidebar, select Access Tokens.
  4. In the Active personal access tokens area, next to the key, select Revoke.

View the last time a token was used

Token usage information is updated every 24 hours. GitLab considers a token used when the token is used to:

  • Authenticate with the REST or GraphQL APIs.
  • Perform a Git operation.

To view the last time a token was used:

  1. In the top-right corner, select your avatar.
  2. Select Edit profile.
  3. On the left sidebar, select Access Tokens.
  4. In the Active personal access tokens area, next to the key, view the Last Used date.

Personal access token scopes

A personal access token can perform actions based on the assigned scopes.

ScopeAccess
api Grants complete read/write access to the API, including all groups and projects, the container registry, and the package registry.
read_user Grants read-only access to the authenticated user’s profile through the /user API endpoint, which includes username, public email, and full name. Also grants access to read-only API endpoints under /users.
read_api Grants read access to the API, including all groups and projects, the container registry, and the package registry. (Introduced in GitLab 12.10.)
read_repository Grants read-only access to repositories on private projects using Git-over-HTTP or the Repository Files API.
write_repository Grants read-write access to repositories on private projects using Git-over-HTTP (not using the API).
read_registry Grants read-only (pull) access to a Container Registry images if a project is private and authorization is required. Available only when the Container Registry is enabled.
write_registry Grants read-write (push) access to a Container Registry images if a project is private and authorization is required. Available only when the Container Registry is enabled. (Introduced in GitLab 12.10.)
sudo Grants permission to perform API actions as any user in the system, when authenticated as an administrator.

When personal access tokens expire

Personal access tokens expire on the date you define, at midnight UTC.

  • GitLab runs a check at 01:00 AM UTC every day to identify personal access tokens that expire in the next seven days. The owners of these tokens are notified by email.
  • GitLab runs a check at 02:00 AM UTC every day to identify personal access tokens that expire on the current date. The owners of these tokens are notified by email.
  • In GitLab Ultimate, administrators can limit the lifetime of access tokens.

Create a personal access token programmatically

You can create a predetermined personal access token as part of your tests or automation.

Prerequisite:

  • You need sufficient access to run a Rails console session for your GitLab instance.

To create a personal access token programmatically:

  1. Open a Rails console:

    sudo gitlab-rails console

  2. Run the following commands to reference the username, the token, and the scopes.

    The token must be 20 characters long. The scopes must be valid and are visible in the source code.

    For example, to create a token that belongs to a user with username automation-bot:

    user = User.find_by_username('automation-bot')
token = user.personal_access_tokens.create(scopes: [:read_user, :read_repository], name: 'Automation token')
token.set_token('token-string-here123')
token.save!

This code can be shortened into a single-line shell command by using the Rails runner:

sudo gitlab-rails runner "token = User.find_by_username('automation-bot').personal_access_tokens.create(scopes: [:read_user, :read_repository], name: 'Automation token'); token.set_token('token-string-here123'); token.save!"

Revoke a personal access token programmatically

You can programmatically revoke a personal access token as part of your tests or automation.

Prerequisite:

  • You need sufficient access to run a Rails console session for your GitLab instance.

To revoke a token programmatically:

  1. Open a Rails console:

    sudo gitlab-rails console

  2. To revoke a token of token-string-here123, run the following commands:

    token = PersonalAccessToken.find_by_token('token-string-here123')
token.revoke!

This code can be shortened into a single-line shell command using the Rails runner:

sudo gitlab-rails runner "PersonalAccessToken.find_by_token('token-string-here123').revoke!"

Troubleshooting

Unrevoke a personal access token

If a personal access token is revoked accidentally by any method, administrators can unrevoke that token.

  1. Open a Rails console.

  2. Unrevoke the token:

    token = PersonalAccessToken.find_by_token('<token_string>')
token.update!(revoked:false)

    For example, to unrevoke a token of token-string-here123:

    token = PersonalAccessToken.find_by_token('token-string-here123')
token.update!(revoked:false)

Alternatives to personal access tokens

For Git over HTTPS, an alternative to personal access tokens is Git Credential Manager, which securely authenticates using OAuth.

How can I get access token username and password?

Get an access token based on username / password.
Have a user use their browser to request an authorization token (they would be asked to enter their username/password)..
Copy the authorization token from the browser and use it in the request header in a client (e.g. postman) to access my api..

How can I generate authorization token?

To create a new auth token:.
In the top-right corner of the Console, open the Profile menu ( ... .
On the Auth Tokens page, click Generate Token..
Enter a friendly description for the auth token. ... .
Click Generate Token..

How do I get an access token from an authorization server?

After you add the authorization profile, you need to get access token from the server. In this tutorial, we get it by using the Authorization Code grant method: Click Get Token. In the subsequent dialog, enter Client Identification and Secret, Authorization URI, Access Token URI and Redirect URI.

Cara Belajar How Check token api Access Token fb Get token Oauth2 Playground

Pos Terkait

Kenapa Akun Facebook minta konfirmasi identitas?
Kenapa Akun Facebook minta konfirmasi identitas?

Proses pengangkatan khalifah umar bin khattab dengan cara
Proses pengangkatan khalifah umar bin khattab dengan cara

How do I fix process com android phone is not responding?
How do I fix process com android phone is not responding?

Mengapa pakaian adat dari setiap daerah berbeda-beda
Mengapa pakaian adat dari setiap daerah berbeda-beda

Kenapa kartu SIM tidak bisa muncul di HP?
Kenapa kartu SIM tidak bisa muncul di HP?

Apakah Hp Samsung 3G Bisa jadi 4G?
Apakah Hp Samsung 3G Bisa jadi 4G?

Apa yang harus dilakukan jika anak alergi susu sapi?
Apa yang harus dilakukan jika anak alergi susu sapi?

Bagaimana cara mengatur area menulis atau margin pada ms excel?
Bagaimana cara mengatur area menulis atau margin pada ms excel?

Apa yang membuat motivasi kalian dalam belajar
Apa yang membuat motivasi kalian dalam belajar

Percakapan Bahasa Inggris bertemu teman di jalan singkat
Percakapan Bahasa Inggris bertemu teman di jalan singkat

Periklanan

BERITA TERKINI

Apakah fungsi data cleaning dalam python?
1 years ago . by UndiscoveredDucking
Cara cek kartu kredit bca aktif atau tidak
1 years ago . by MythicalCoverage
Cara menggunakan setcookie not working javascript
1 years ago . by DrabServitude
Cara menggunakan fungsi struktur html
1 years ago . by ParticipatingAdvert
Which MySQL edition used for physical backup?
1 years ago . by HeedlessLikeness
Php imagemagick pdf ke png kualitas tinggi
1 years ago . by QuietRegularity
Cara menggunakan python raise typeerror
1 years ago . by DifficultImmunization
Cara mengisi game di ps 3
1 years ago . by VeterinaryReviewer
Bagaimana Anda memeriksa apakah saya sudah menginstal mysql?
1 years ago . by PriestlyDonkey
Mengapa gambar tidak ditampilkan di html?
1 years ago . by High-qualityWidget

Toplist Popular

#1
Top 7 os elementos da paisagem descritos no texto correspondem a aspectos biogeográficos presentes na 2022
1 years ago
#2
Top 6 a energia nuclear é uma alternativa aos combustíveis fósseis que, se não gerenciada de forma correta 2022
1 years ago
#3
Top 6 a persistência das reivindicações relativas à aplicação desse preceito normativo tem em vista 2022
1 years ago
#4
Top 7 wie viele zigaretten sind ein shisha kopf 2022
2 years ago
#5
Top 7 wie viel kostet eine badewanne voll wasser 2022
2 years ago
#6
Top 8 golf 7 standheizung fernbedienung anlernen 2022
2 years ago
#7
Top 8 sky receiver aufnehmen nicht möglich ohne abo 2022
2 years ago
#8
Top 5 einhell kgsz 300 ug sägeblatt wechseln 2022
2 years ago
#9
Top 7 renault clio 3 abblendlicht wechseln anleitung 2022
2 years ago
#10
Top 8 outlook diese datendatei ist mit einem e-mail-konto verbunden 2022
2 years ago

Periklanan

Terpopuler

Periklanan

Tentang Kami

Legal

Dukungan

Social

homeentrdeptjp
Copyright © 2024 membukakan Inc.