Add Runner Token to Credential Inventory

Release notes

Problem to solve

The credential inventory adds necessary visibility for compliance-minded organizations to know who or what has access to their GitLab systems and resources. It is missing a number of access credentials/tokens to provide a more comprehensive and reliable view of GitLab access and control of that access.

Intended users

• Cameron (Compliance Manager)
• Sidney (Systems Administrator)

User experience goal

An administrator should be able to view information about every Runner Token in use within their instance.

Proposal

Add a Runner Tokens tab to the credential inventory and list relevant information. Consider:

• Description - e.g. "My runner that runs things"
• Whodunnit - e.g. "Created by: Matt Dunnit"
• Active - e.g. yes / no
• Locked - e.g. yes / no
• Run_Untagged - e.g. yes / no
• Tag List - e.g. Tag1, Tag2, Tag3
• Access Level - e.g. not_protected, ref_protected
• Last Used - e.g. "32 minutes ago" or "2020-09-02 at 16:21"
• Last IP - e.g. 127.0.0.1

Docs

Further details