Permission | Explanation |
---|---|
api | Grants full read/write access to the API, including all groups, projects, container registry, dependency proxy, and package registry. Required for API requests. |
read_api | Allows read-only access to all groups, projects, container registry, and package registry. |
read_user | Grants read-only access to user profiles via the /user API endpoint, including username, public email, and full name. Also provides access to /users endpoints. |
read_repository | Enables read-only access to repositories in private projects via Git-over-HTTP or the Repository Files API. |
write_repository | Allows read/write access to repositories on private projects via Git-over-HTTP (not through the API). |
profile | Grants read-only access to the user’s profile data using OpenID Connect. |
email | Provides read-only access to the user’s primary email address using OpenID Connect. |
.env
file.