Support restricting OAuth tokens to specific projects and groups

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

Close this issue

Extending the work to limit personal access tokens to specific projects https://gitlab.com/gitlab-org/gitlab-ce/issues/20993 and groups https://gitlab.com/gitlab-org/gitlab-ce/issues/45967, we should add support for OAuth workflows too.

Proposal

Click OAuth button in some external app
Redirected to GitLab to confirm or reject, and select which projects/groups to give access
From /profile/applications the user can add or remove projects/groups from the list at any time

Links

Edited Aug 18, 2025 by 🤖 GitLab Bot 🤖