Authenticate runner requests with JOB-TOKEN instead of PRIVATE-TOKEN (!5470) · Merge requests · GitLab.org / gitlab-runner

This MR modifies Add runner token to header (!4643 - merged) to use JOB-TOKEN instead of PRIVATE-TOKEN to route requests to the correct Cell.

In addition to this I've refactored things a bit. The call tree was all backwards with the more generic doJSON methods calling the more specific doJSONWithPAT methods, passing empty arguments which the latter has to handle. Instead of generic and PAT specific types and methods, I just made it easy to add headers to the doJSON methods.

Best reviewed commit at a time.

I haven't tested this yet, nor have I confirmed that it does not break cell routing; I'll do that tomorrow.

Fixes Stop passing in job-token to `PRIVATE-TOKEN` he... (#38677 - closed)

Edited Mar 27, 2025 by Axel von Bertoldi

Authenticate runner requests with JOB-TOKEN instead of PRIVATE-TOKEN

Merge request reports