New GitLab token scopes for Observability
GitLab access tokens should have separate scopes for observability. This is a change required in the main GitLab system, not in GOB.
For example scopes could be, read_observability
and write_observability
.
The caveat here is that our integration points to GitLab already require read_api
level access (via current OAuth routes) and this would also be required to perform some existing checks.
We need to investigate how this works in GitLab, and whether we can have a custom scope that includes read_api
automatically.
Edited by Joe Shaw