Expose job scope data in CI_JOB_TOKEN API for introspection
Release notes
GitLab has introduced a secure workflow for CI_JOB_TOKEN and you may be looking for information about if the setting is enabled in your project. Now you can easily use the CI_JOB_TOKEN API for introspection into the token's data such as if the scope has been enabled.
Problem to solve
Also, it could be useful if there was an API endpoint that the CI_JOB_TOKEN could use for introspection of the project chiefly to see if the flag is enabled which would be useful for us using the custom executor
Proposal
Expose job token scope data by job_token_scope_enabled: true/false
in API for CI_JOB_TOKEN introspection: https://docs.gitlab.com/ee/api/jobs.html#get-job-tokens-job
The response will look like:
{
"project": {
"job_token_scope_enabled": true/false
}
"name": "my-job",
...other fields...
}
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.