Create Architecture Design Document for Granular Job Tokens
Why are we doing this work
To understand the problem and investigate possible solutions to help us move towards a solution.
Relevant links
- Architecture Design Workflow
- Secure Tokens - Proposal
- Sync on Tokens and Permissions
- Proposal: Next GitLab Runner Token Architecture
- CI_JOB_TOKEN
- Tokens Overview
- JWT
- Custom Roles
- Custom Abilities
- Security Token Service
- PAT Scopes
- User Types
- GitLab OAuth2 Provider
Implementation plan
-
Create an Architecture Design Document -
Create a Proof of Concept -
Identify missing permissions
Edited by mo khan