GitLab Authentication using OAuth (CodeScan)
Connecting AutoRABIT (Codescan) to GitLab Enterprise requires a secure handshake based on the OAuth 2.0 Authorization Framework.
Applies To
GitLab Enterprise Server (self-managed); not applicable to GitLab .
Generate Client ID and Client Secret
Log in to your GitLab Enterprise Server with an admin account.
Navigate to the Admin Area (click Main menu › Admin).
In the left sidebar, click Applications.
Click New application.
Configure:
Name: e.g., Codescan GitLab OAuth
Redirect URI:
<https://<Codescan_URL>>/_codescan/oauth2/authorize
Check Trusted to bypass user consent.
Check Confidential to protect the client secret.
Select the api scope under Authorized Applications.
Click Save application.
Copy the Application ID (Client ID) and click Copy on the Secret field to get the Client Secret.
FAQ
Issue
How to Fix
Mismatched credentials
Double-check clientId, clientSecret, and redirecturi.
Last updated
Was this helpful?