Add revoke endpoint for runner controller token API (!215699) · Merge requests · GitLab.org / GitLab

What does this MR do and why?

Add revoke endpoint for runner controller token API.

This change adds the ability to revoke (disable) runner controller tokens. Tokens can be marked as "revoked" to prevent their use while keeping them in the system for audit purposes.

The implementation adds a status field to tokens that can be either "active" or "revoked", with active being the default. When listing or viewing tokens, only active ones are shown. A new API endpoint allows admins to revoke tokens.

The database is updated to store the token status, and comprehensive tests ensure the feature works correctly.

References

Part of #582812.

How to set up and validate locally

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Add revoke endpoint for runner controller token API

What does this MR do and why?

References

How to set up and validate locally

MR acceptance checklist

Merge request reports