Allow personal access tokens to be rotated when "Maximum allowable lifetime for access tokens (days)" field is set to less than one week (!129964) · Merge requests · GitLab.org / GitLab

Zachary Bridges requested to merge zachary.bridges/gitlab:422928-fix-pat-rotate-less-than-1-week into master Aug 22, 2023

What does this MR do and why?

addresses #422928 (closed). allows personal access tokens to be rotated when ApplicationSettings#max_personal_access_token_lifetime is set to less than one week. Previously this would fail when the lifetime was set to less than one week, because the expiration date was set too far into the future. This establishes a new behavior where the ApplicationSettings#max_personal_access_token_lifetime configuration sets the new maximum default lifetime for token rotation, but only in the case where the value is set to under 7 days.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #422928 (closed)

Edited Sep 20, 2023 by Aboobacker MK

Allow personal access tokens to be rotated when "Maximum allowable lifetime for access tokens (days)" field is set to less than one week

What does this MR do and why?

MR acceptance checklist

Merge request reports