git-credential-manager icon indicating copy to clipboard operation
git-credential-manager copied to clipboard

Published 20 hours ago verified publisher icon git-ecosystem

Allow adding extra scopes to gitlab oauth tokens?

Open maxhaton opened this issue 1 year ago • 0 comments
trafficstars

Feature description

Currently the authentication with gitlab is done such that the final token only has scopes that let it read and write repositories, it would be useful if one could optionally add to this e.g. read_api and so on, e.g. so other tools authenticating with the same gitlab instance can avoid implementing their own oauth flow.

The change to do so would presumably be trivial, is there a security reason not to?

maxhaton avatar May 13 '24 23:05 maxhaton