Overhaul OAuth authorization page
What does this MR do and why?
This change updates the page where users grant OAuth applications access to their accounts.
- It uses the
minimal
layout to keep the focus on the singular task. There's no need for navigation nor the search page bar that does nothing. - Adds extra information about the application to help users make an educated decision
- Changes the button variant to
confirm
- Rewords terminology to more likely be accurate and less misleading
Relates to #462655 (closed)
MR acceptance checklist
Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Screenshots or screen recordings
Before | After |
---|---|
How to set up and validate locally
Instance OAuth App
- Login to GitLab as an Admin and navigate to
/admin/applications/new
- Fill out the form with the following:
- Name - Foo bar
-
Redirect URI -
http://foo.bar
- Check
api
andread_api
under Scopes
- Navigate to
/oauth/authorize?access_type=online&client_id=<Application ID>&redirect_uri=http%3A%2F%2Ffoo.bar&response_type=code&scope=api%20read_user
.- Make sure you update
<Application ID>
to the Application ID provided in the previous step
- Make sure you update
Group OAuth App
- Navigate to a group and go to
/-/settings/applications
- Add an app and fill out the form with the following:
- Name - Foo bar
-
Redirect URI -
http://localhost:4567
- Check
api
under Scopes
- Navigate to
/oauth/authorize?client_id=<Application ID>&redirect_uri=http://localhost:4567&response_type=code
- Make sure you update
<Application ID>
to the Application ID provided in the previous step
- Make sure you update
User OAuth App
- Navigate to
/oauth/applications
- Add an app and fill out the form with the following:
- Name - Foo bar
-
Redirect URI -
http://localhost:4567
- Check
api
under Scopes
- Navigate to
/oauth/authorize?client_id=<Application ID>&redirect_uri=http://localhost:4567&response_type=code
- Make sure you update
<Application ID>
to the Application ID provided in the previous step
- Make sure you update
Edited by Adil Farrukh