<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>GitLab Component on Software Factory</title><link>/operate/tools/gitlab/</link><description>Recent content in GitLab Component on Software Factory</description><generator>Hugo</generator><language>en</language><atom:link href="/operate/tools/gitlab/index.xml" rel="self" type="application/rss+xml"/><item><title>Secrets, Tokens and Credentials in GitLab</title><link>/operate/tools/gitlab/secrets/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>/operate/tools/gitlab/secrets/</guid><description>&lt;p&gt;This document lists &lt;a href="/use/tools/gitlab/manage/secrets/"&gt;all secrets, tokens and credentials&lt;/a&gt;

that can be configured and managed by an administrator user in GitLab.&lt;/p&gt;
&lt;h2 id="list-of-credentials"&gt;List of credentials&lt;a class="td-heading-self-link" href="#list-of-credentials" aria-label="Heading self-link"&gt;&lt;/a&gt;&lt;/h2&gt;
&lt;table&gt;
 &lt;thead&gt;
 &lt;tr&gt;
 &lt;th&gt;Credentials type&lt;/th&gt;
 &lt;th&gt;Usage&lt;/th&gt;
 &lt;th&gt;Official documentation link&lt;/th&gt;
 &lt;th&gt;Comment&lt;/th&gt;
 &lt;/tr&gt;
 &lt;/thead&gt;
 &lt;tbody&gt;
 &lt;tr&gt;
 &lt;td&gt;&lt;strong&gt;Tokens&lt;/strong&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;Personal Access Tokens&lt;/td&gt;
 &lt;td&gt;Authenticate to GitLab API, Git repositories through HTTPS, GitLab registry&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/security/tokens/#personal-access-tokens" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Personal Access Tokens&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;Project access tokens&lt;/td&gt;
 &lt;td&gt;Access tokens scoped to a project&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/security/tokens/#project-access-tokens" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Project access tokens&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;Group access tokens&lt;/td&gt;
 &lt;td&gt;Access tokens scoped yo a group&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/security/tokens/#group-access-tokens" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Group access tokens&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;Impersonation Tokens&lt;/td&gt;
 &lt;td&gt;Admin‑created personal access token that lets you authenticate to the GitLab API, repositories, and registry as a specific user&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/security/tokens/#impersonation-tokens" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Impersonation tokens&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;OAuth 2.0 tokens&lt;/td&gt;
 &lt;td&gt;Allow other services to access the GitLab API on a user’s behalf&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/security/tokens/#oauth-20-tokens" class="external-link" target="_blank" rel="noopener noreferrer"&gt;OAuth 2.0 tokens&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;&lt;strong&gt;Keys&lt;/strong&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;SSH Keys&lt;/td&gt;
 &lt;td&gt;Git Workflows&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/user/ssh/" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Use SSH Keys&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;&lt;strong&gt;Other&lt;/strong&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;User passwords&lt;/td&gt;
 &lt;td&gt;User Authentication&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/user/profile/user_passwords/" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Security configuration&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;tr&gt;
 &lt;td&gt;Two-factor authentication (2FA)&lt;/td&gt;
 &lt;td&gt;Additional level of security to GitLab account&lt;/td&gt;
 &lt;td&gt;&lt;a href="https://docs.gitlab.com/user/profile/account/two_factor_authentication/" class="external-link" target="_blank" rel="noopener noreferrer"&gt;Two-factor Authentication&lt;/a&gt;
&lt;/td&gt;
 &lt;td&gt;&lt;/td&gt;
 &lt;/tr&gt;
 &lt;/tbody&gt;
&lt;/table&gt;
&lt;h2 id="credential-configuration-parameters"&gt;Credential Configuration Parameters&lt;a class="td-heading-self-link" href="#credential-configuration-parameters" aria-label="Heading self-link"&gt;&lt;/a&gt;&lt;/h2&gt;
&lt;p&gt;This section lists all parameters available for credential configuration.
Each parameter can be set by an administrator through the Admin UI, REST API request,
or defined in a configuration file.&lt;/p&gt;</description></item></channel></rss>