Add deploy token handling in audit event generation (!86563) · Merge requests · GitLab.org / GitLab

Harsimar Sandhu requested to merge 359066-handle-deploy-token-for-git-audit-stream into master May 04, 2022

What does this MR do and why?

Now that we are streaming git events, we want to handle deploy token as author for audit events.

How to set up and validate locally

Enable the feature flag audit_event_streaming_git_operations on the instance in question.
Create a private project on a group with an Ultimate licence.
Create a deploy token, with read_repository, scope for the project. (Settings -> Repository -> Deploy tokens)
Clone the repository using http credentials.
Use the deploy token user/password as the credentials.
Check audit event is streamed and git clone is successful.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #359066 (closed)

Edited May 04, 2022 by Harsimar Sandhu

Add deploy token handling in audit event generation

What does this MR do and why?

How to set up and validate locally

MR acceptance checklist

Merge request reports