diff options
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/.vale/gitlab/spelling-exceptions.txt | 1 | ||||
| -rw-r--r-- | doc/api/project_job_token_scopes.md | 71 | ||||
| -rw-r--r-- | doc/update/removals.md | 10 | ||||
| -rw-r--r-- | doc/user/group/value_stream_analytics/index.md | 3 |
4 files changed, 85 insertions, 0 deletions
diff --git a/doc/.vale/gitlab/spelling-exceptions.txt b/doc/.vale/gitlab/spelling-exceptions.txt index 476b1eebf84..4bed441ba9d 100644 --- a/doc/.vale/gitlab/spelling-exceptions.txt +++ b/doc/.vale/gitlab/spelling-exceptions.txt @@ -309,6 +309,7 @@ dput Dreamweaver DRIs DSLs +DSN Dynatrace Ecto eden diff --git a/doc/api/project_job_token_scopes.md b/doc/api/project_job_token_scopes.md new file mode 100644 index 00000000000..9120428998a --- /dev/null +++ b/doc/api/project_job_token_scopes.md @@ -0,0 +1,71 @@ +--- +stage: Verify +group: Pipeline Security +info: "To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/product/ux/technical-writing/#assignments" +--- + +# Project job token scope API **(FREE)** + +NOTE: + +- Every calls to the project token scope API must be authenticated, for example, with a personal access token. +- The authenticated user (personal access token) needs to have at least Maintainer role for the project. +- Depending on the usage, the personal access token requires read access (scope `read_api`) or read/write access (scope `api`) to the API. + +## Get a project job token scope + +Fetch CI_JOB_TOKEN access settings (job token scope) of a project. + +```plaintext +GET /projects/:id/job_token_scope +``` + +Parameters + +| Attribute | Type | Required | Description | +|-----------|----------------|------------------------|-------------| +| `id` | integer/string | **{check-circle}** Yes | ID or [URL-encoded path of the project](rest/index.md#namespaced-path-encoding) owned by the authenticated user. | + +Example of request + +```shell +curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/projects/1/job_token_scope" +``` + +Example of response + +```json +{ + "inbound_enabled": true, + "outbound_enabled": false +} +``` + +## Patch a project job token scope + +Patch CI_JOB_TOKEN access settings of a project. + +```plaintext +PATCH /projects/:id/job_token_scope +``` + +Parameters + +| Attribute | Type | Required | Description | +|-----------|----------------|-------------------------|-------------| +| `id` | integer/string | **{check-circle}** Yes | ID or [URL-encoded path of the project](rest/index.md#namespaced-path-encoding) owned by the authenticated user. | +| `enabled` | boolean | **{dotted-circle}** Yes | Indicates CI/CD job tokens generated in other projects have restricted access to this project. | + +Example of request + +```shell +curl --request PATCH \ + --url "https://gitlab.example.com/api/v4/projects/7/job_token_scope" \ + --header 'PRIVATE-TOKEN: <your_access_token>' \ + --header 'Content-Type: application/json' \ + --data '{ "enabled": false }' +``` + +Example of response + +There is no response body. diff --git a/doc/update/removals.md b/doc/update/removals.md index e371e2f0fb0..4f048c9277d 100644 --- a/doc/update/removals.md +++ b/doc/update/removals.md @@ -162,6 +162,16 @@ Instead, use the [new variable names](https://docs.gitlab.com/ee/user/applicatio - `CS_REGISTRY_USER` - `CS_DOCKERFILE_PATH` +### Default value of `ttl_days` now 30 days + +<div class="deprecation-notes"> +- Announced in: GitLab <span class="milestone">15.4</span> +- This is a [breaking change](https://docs.gitlab.com/ee/development/deprecation_guidelines/). Review the details carefully before upgrading. +- To discuss this change or learn more, see the [deprecation issue](https://gitlab.com/gitlab-org/gitlab/-/issues/369122). +</div> + +From GitLab 16.0, any personal, project, or group access token [must have an expiration date](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/96594). If you create a personal access token with the GitLab Shell command `personal_access_token` without specifying `ttl_days`, a default value of 30 days is now applied. + ### Dependency Scanning ends support for Java 13, 14, 15, and 16 <div class="deprecation-notes"> diff --git a/doc/user/group/value_stream_analytics/index.md b/doc/user/group/value_stream_analytics/index.md index bc48c1050fb..f6df7eb33a2 100644 --- a/doc/user/group/value_stream_analytics/index.md +++ b/doc/user/group/value_stream_analytics/index.md @@ -51,6 +51,9 @@ Value stream analytics offers different features at the project and group level |Date filter behavior|Filters items [finished within the date range](https://gitlab.com/groups/gitlab-org/-/epics/6046)|Filters items by creation date.|Filters items by creation date.| |Authorization|At least reporter|At least reporter|Can be public| +NOTE: +Feature parity of project-level with group-level value stream analytics is achieved by using the new record `ProjectNamespace`. For details about this consolidation initiative, see the [Organization documentation](../../../development/organization/index.md). + ## How value stream analytics works Value stream analytics calculates the duration of every stage of your software development process. |