-
-
Notifications
You must be signed in to change notification settings - Fork 320
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat: add new authentication method for GitLab >= 16 (#876)
## Description GitLab released a new [authentication architecture for their runners](https://docs.gitlab.com/ee/architecture/blueprints/runner_tokens) since the version 16.0.0. This MR handle this new architecture while maintaining backward compatibility. ## Migrations required Highly recommended as the old GitLab Runner registration method will be removed with GitLab 17. Migration steps: 1. create a group access token for your GitLab group (needs the owner role and the api scope). To be refreshed manually once a year. 2. store the token in a SSM parameter and set the variable `runner_gitlab.access_token_secure_parameter_store_name` to this SSM parameter 3. remove `runner_gitlab_registration_config.registration_token`. No longer needed. 4. add `type = `project or group`, `group_id = <GitLab group number>` (for group runners) or `project_id = <GitLab project id>` (for project runners) to the `runner_gitlab_registration_config` section. ## Verification - running the old authentication method on GitLab 16: success - running the new authentication method on GitLab 16: success --------- Signed-off-by: François Bibron <francois.bibron@polyconseil.fr> Co-authored-by: François Bibron <francois.bibron@polyconseil.fr> Co-authored-by: Matthias Kay <matthias.kay@hlag.com>
- Loading branch information
1 parent
620459a
commit c870745
Showing
6 changed files
with
112 additions
and
18 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -27,6 +27,7 @@ | |
"filesha", | ||
"formatlist", | ||
"gitter", | ||
"glrt", | ||
"glrunners", | ||
"instancelifecycle", | ||
"kics", | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters