I am NOT a python developer. I just changed what was necessary to make it work. This repository can be used directly or be an inspiration to others to enable Gitlab SSO with Sentry 10. These files can be installed from local folder only as no updated package is available in pip repository.
Django has been updated in Sentry 10 and previous scripts don't work anymore.
Add this package to sentry/requirements.txt
# Add plugins here
sentry-auth-gitlab@https://github.com/cirmaciu/sentry-auth-gitlab/archive/master.zip#egg=sentry-auth-gitlab
Alternatively, if you want to always have a specific version, replace "master" with the commit id of the version you want. For example:
# Add plugins here
sentry-auth-gitlab@https://github.com/cirmaciu/sentry-auth-gitlab/archive/5be8aa7ab6698baf9d5de47d06f1216b71452060.zip#egg=sentry-auth-gitlab
Setup Gitlab Auth for Sentry as mentioned in original documentation bellow
Stop, rebuild and restart your Sentry docker containers to accept new configuration and plugins
docker-compose down
docker-compose build
docker-compose up -d
It should work.
v0.1.6
An SSO provider for Sentry which enables GitLab Login
Following configuration has been changed
# You can specify scope to "api" in Gitlab's OAuth Application page
# If you failed to do that, set GITLAB_AUTH_SCOPE = "read_user"
GITLAB_AUTH_SCOPE = "api"
# If your gitlab does not support v4 api, set GITLAB_API_VERSION = 3
GITLAB_API_VERSION = 4
pip install sentry-auth-gitlab
Create a new application under your GitLab. Enter the Callback URL as the prefix to your Sentry installation:
http(s?)://sentry.example.com/auth/sso/
Once done, grab your API keys and drop them in your ``sentry.conf.py:
GITLAB_APP_ID = "APP-ID"
GITLAB_APP_SECRET = "APP-SECRET"
GITLAB_BASE_DOMAIN = "git.example.com"
Optionally you may also specify the api version, scheme, and scope:
GITLAB_API_VERSION = 4
GITLAB_AUTH_SCOPE = "api"
GITLAB_HTTP_SCHEME = "https"
If your gitlab is deployed in a private network (probably). You need to alter sentry's default ip black list to make oauth flow work.
Put following config in your sentry.conf.py and delete conflit ones
SENTRY_DISALLOWED_IPS = (
'0.0.0.0/8',
'10.0.0.0/8',
'100.64.0.0/10',
'127.0.0.0/8',
'169.254.0.0/16',
'172.16.0.0/12',
'192.0.0.0/29',
'192.0.2.0/24',
'192.88.99.0/24',
'192.168.0.0/16',
'198.18.0.0/15',
'198.51.100.0/24',
'224.0.0.0/4',
'240.0.0.0/4',
'255.255.255.255/32'
)