Deploy Tokens API
List all deploy tokens
Introduced in GitLab 12.9.
Get a list of all deploy tokens across the GitLab instance. This endpoint requires administrator access.
GET /deploy_tokens
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
active
| boolean | No | Limit by active status. |
Example request:
curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/deploy_tokens"
Example response:
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
"revoked": false,
"expired": false,
"scopes": [
"read_repository",
"read_registry"
]
}
]
Project deploy tokens
Project deploy token API endpoints require the Maintainer role or higher for the project.
List project deploy tokens
Introduced in GitLab 12.9.
Get a list of a project’s deploy tokens.
GET /projects/:id/deploy_tokens
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the project. |
active
| boolean | No | Limit by active status. |
Example request:
curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/projects/1/deploy_tokens"
Example response:
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
"revoked": false,
"expired": false,
"scopes": [
"read_repository",
"read_registry"
]
}
]
Get a project deploy token
Introduced in GitLab 14.9.
Get a single project’s deploy token by ID.
GET /projects/:id/deploy_tokens/:token_id
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the project owned by the authenticated user |
token_id
| integer | Yes | ID of the deploy token |
Example request:
curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/projects/1/deploy_tokens/1"
Example response:
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
"revoked": false,
"expired": false,
"scopes": [
"read_repository",
"read_registry"
]
}
Create a project deploy token
Introduced in GitLab 12.9.
Creates a new deploy token for a project.
POST /projects/:id/deploy_tokens
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the project owned by the authenticated user |
name
| string | Yes | New deploy token’s name |
expires_at
| datetime | No | Expiration date for the deploy token. Does not expire if no value is provided. Expected in ISO 8601 format (2019-03-15T08:00:00Z )
|
username
| string | No | Username for deploy token. Default is gitlab+deploy-token-{n}
|
scopes
| array of strings | Yes | Indicates the deploy token scopes. Must be at least one of read_repository , read_registry , write_registry , read_package_registry , or write_package_registry .
|
Example request:
curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" --header "Content-Type: application/json" \
--data '{"name": "My deploy token", "expires_at": "2021-01-01", "username": "custom-user", "scopes": ["read_repository"]}' \
"https://gitlab.example.com/api/v4/projects/5/deploy_tokens/"
Example response:
{
"id": 1,
"name": "My deploy token",
"username": "custom-user",
"expires_at": "2021-01-01T00:00:00.000Z",
"token": "jMRvtPNxrn3crTAGukpZ",
"revoked": false,
"expired": false,
"scopes": [
"read_repository"
]
}
Delete a project deploy token
Introduced in GitLab 12.9.
Removes a deploy token from the project.
DELETE /projects/:id/deploy_tokens/:token_id
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the project owned by the authenticated user |
token_id
| integer | Yes | ID of the deploy token |
Example request:
curl --request DELETE --header "PRIVATE-TOKEN: <your_access_token>" \
"https://gitlab.example.com/api/v4/projects/5/deploy_tokens/13"
Group deploy tokens
Users with at least the Maintainer role for the group can list group deploy tokens. Only group Owners can create and delete group deploy tokens.
List group deploy tokens
Introduced in GitLab 12.9.
Get a list of a group’s deploy tokens
GET /groups/:id/deploy_tokens
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the group. |
active
| boolean | No | Limit by active status. |
Example request:
curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/groups/1/deploy_tokens"
Example response:
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
"revoked": false,
"expired": false,
"scopes": [
"read_repository",
"read_registry"
]
}
]
Get a group deploy token
Introduced in GitLab 14.9.
Get a single group’s deploy token by ID.
GET /groups/:id/deploy_tokens/:token_id
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the group owned by the authenticated user |
token_id
| integer | Yes | ID of the deploy token |
Example request:
curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/groups/1/deploy_tokens/1"
Example response:
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
"revoked": false,
"expired": false,
"scopes": [
"read_repository",
"read_registry"
]
}
Create a group deploy token
Introduced in GitLab 12.9.
Creates a new deploy token for a group.
POST /groups/:id/deploy_tokens
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the group owned by the authenticated user |
name
| string | Yes | New deploy token’s name |
expires_at
| datetime | No | Expiration date for the deploy token. Does not expire if no value is provided. Expected in ISO 8601 format (2019-03-15T08:00:00Z )
|
username
| string | No | Username for deploy token. Default is gitlab+deploy-token-{n}
|
scopes
| array of strings | Yes | Indicates the deploy token scopes. Must be at least one of read_repository , read_registry , write_registry , read_package_registry , or write_package_registry .
|
Example request:
curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" --header "Content-Type: application/json" \
--data '{"name": "My deploy token", "expires_at": "2021-01-01", "username": "custom-user", "scopes": ["read_repository"]}' \
"https://gitlab.example.com/api/v4/groups/5/deploy_tokens/"
Example response:
{
"id": 1,
"name": "My deploy token",
"username": "custom-user",
"expires_at": "2021-01-01T00:00:00.000Z",
"token": "jMRvtPNxrn3crTAGukpZ",
"revoked": false,
"expired": false,
"scopes": [
"read_registry"
]
}
Delete a group deploy token
Introduced in GitLab 12.9.
Removes a deploy token from the group.
DELETE /groups/:id/deploy_tokens/:token_id
Parameters:
Attribute | Type | Required | Description |
---|---|---|---|
id
| integer/string | Yes | ID or URL-encoded path of the group owned by the authenticated user |
token_id
| integer | Yes | ID of the deploy token |
Example request:
curl --request DELETE --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/groups/5/deploy_tokens/13"