Use read_api scope for GitLab OAuth app (!2018) · Merge requests · gitter / webapp

Eric Eastwood requested to merge 2583-use-read_api-gitlab-scope into develop Sep 22, 2020

Use read_api scope for GitLab OAuth app

Fix https://gitlab.com/gitlab-org/gitter/webapp/-/issues/2583

Dev notes

I noticed that GitLab throws this error if we have have a mismatch in the requested scopes vs OAuth app scopes set on GitLab. We have api, read_user set in the code but read_api and read_user in the app and it throws the following error testing in the beta environment. We will need to update the OAuth app as the app rolls out. Probably a post on Twitter during the quick transition.

An error has occurred
The requested scope is invalid, unknown, or malformed.

Todo

Test on beta
Update production GitLab OAuth app with read_api in place of api, https://gitlab.com/profile/applications
- Wait for the release to roll out
- Make a tweet notifying that you may run into GitLab sign in errors during this quick transition

Edited Oct 09, 2020 by Eric Eastwood

Use read_api scope for GitLab OAuth app

Dev notes

Todo

Merge request reports