# GitLab Integration

GitLab integrates with multiple third-party services to allow external issue

- [LDAP](ldap.md) Set up sign in via LDAP

- [OmniAuth](omniauth.md) Sign in via Twitter, GitHub, GitLab.com, Google, Bitbucket, Facebook, Shibboleth, SAML, Crowd and Azure

- [SAML](saml.md) Configure GitLab as a SAML 2.0 Service Provider

- [CAS](cas.md) Configure GitLab to sign in using CAS

- [Slack](slack.md) Integrate with the Slack chat service

- [OAuth2 provider](oauth_provider.md) OAuth2 application creation

- [Gmail actions buttons](gmail_action_buttons_for_gitlab.md) Adds GitLab actions to messages

- [reCAPTCHA](recaptcha.md) Configure GitLab to use Google reCAPTCHA for new users

GitLab Enterprise Edition contains [advanced Jenkins support][jenkins].

Pivotal Tracker, and Slack are available in the form of a [Project Service][].

You can find these within GitLab in the Services page under Project Settings if

# GitLab Integration

GitLab integrates with multiple third-party services to allow external issue trackers and external authentication.

- [Jenkins](jenkins.md) Integrate with the Jenkins CI

- [OmniAuth](omniauth.md) Sign in via Twitter, GitHub, GitLab, and Google via OAuth.

- [SAML](saml.md) Configure GitLab as a SAML 2.0 Service Provider

- [Slack](slack.md) Integrate with the Slack chat service

- [Kerberos](kerberos.md) Integrate with Kerberos

- [OAuth2 provider](oauth_provider.md) OAuth2 application creation

- [Gmail actions buttons](gmail_action_buttons_for_gitlab.md) Adds GitLab actions to messages

GitLab Enterprise Edition contains [advanced JIRA support](http://doc.gitlab.com/ee/integration/jira.html) and [advanced Jenkins support](http://doc.gitlab.com/ee/integration/jenkins.html).

Integration with services such as Campfire, Flowdock, Gemnasium, HipChat, Pivotal Tracker, and Slack are available in the form of a Project Service.

You can find these within GitLab in the Services page under Project Settings if you are at least a master on the project.

Project Services are a bit like plugins in that they allow a lot of freedom in adding functionality to GitLab, for example there is also a service that can send an email every time someone pushes new commits.

require 'omniauth-oauth2'

  module Strategies

    class GitLab < OmniAuth::Strategies::OAuth2

       option :name, 'gitlab'

       option :client_options, {

         site: 'https://gitlab.com',

    end # GitLab

  %h1

    Welcome to GitLab CI

  %p

    GitLab CI integrates with your GitLab installation and runs tests for your projects.

    %li

      In the GitLab admin area under OAuth applications create a new entry. The redirect url should be

    %li

      Update the GitLab CI config with the application id and the application secret from GitLab.

    %li

      Restart your GitLab CI instance

    %li

      Refresh this page when GitLab CI has started again

# Google OAuth2 OmniAuth Provider

To enable the Google OAuth2 OmniAuth provider you must register your application with Google. Google will generate a client ID and secret key for you to use.

1.  Sign in to the [Google Developers Console](https://console.developers.google.com/) with the Google account you want to use to register GitLab.

1.  Provide the project information

    - Project name: 'GitLab' works just fine here.

    - Application type: "Web Application"

    - Authorized JavaScript origins: This isn't really used by GitLab but go ahead and put 'https://gitlab.example.com' here.

    - Authorized redirect URI: 'https://gitlab.example.com/users/auth/google_oauth2/callback'

1. Under the heading "Client ID for web application" you should see a Client ID and Client secret (see screenshot). Keep this page open as you continue configuration. ![Google app](google_app.png)

1.  On your GitLab server, open the configuration file.

    ```sh

      sudo editor /etc/gitlab/gitlab.rb

# Google OAuth2 OmniAuth Provider

To enable the Google OAuth2 OmniAuth provider you must register your application with Google. Google will generate a client ID and secret key for you to use.

1.  Sign in to the [Google Developers Console](https://console.developers.google.com/) with the Google account you want to use to register GitLab.

1.  Provide the project information

    - Project name: 'GitLab' works just fine here.

    - Application type: "Web Application"

    - Authorized JavaScript origins: This isn't really used by GitLab but go ahead and put 'https://gitlab.example.com' here.

    - Authorized redirect URI: 'https://gitlab.example.com/users/auth/google_oauth2/callback'

1. Under the heading "Client ID for web application" you should see a Client ID and Client secret (see screenshot). Keep this page open as you continue configuration. ![Google app](google_app.png)

1.  On your GitLab server, open the configuration file.

    ```sh

      sudo editor /etc/gitlab/gitlab.rb

# Microsoft Azure OAuth2 OmniAuth Provider

To enable the Microsoft Azure OAuth2 OmniAuth provider you must register your application with Azure. Azure will generate a client ID and secret key for you to use.

1.  Select "Active Directory" on the left and choose the directory you want to use to register GitLab.

1.  Provide the project information and click the "Next" button.

    - Name: 'GitLab' works just fine here.

1.  On the "App properties" page enter the needed URI's and click the "Complete" button.

    - SIGN-IN URL: Enter the URL of your GitLab installation (e.g 'https://gitlab.mycompany.com/')

    - APP ID URI: Enter the endpoint URL for Microsoft to use, just has to be unique (e.g 'https://mycompany.onmicrosoft.com/gitlab')

1. Add a "Reply URL" pointing to the Azure OAuth callback of your GitLab installation (e.g. https://gitlab.mycompany.com/users/auth/azure_oauth2/callback).

1.  On your GitLab server, open the configuration file.

# Google OAuth2 OmniAuth Provider

To enable the Google OAuth2 OmniAuth provider you must register your application with Google. Google will generate a client ID and secret key for you to use.

1.  Sign in to the [Google Developers Console](https://console.developers.google.com/) with the Google account you want to use to register GitLab.

1.  Provide the project information

    - Project name: 'GitLab' works just fine here.

    - Application type: "Web Application"

    - Authorized JavaScript origins: This isn't really used by GitLab but go ahead and put 'https://gitlab.example.com' here.

    - Authorized redirect URI: 'https://gitlab.example.com/users/auth/google_oauth2/callback'

1. Under the heading "Client ID for web application" you should see a Client ID and Client secret (see screenshot). Keep this page open as you continue configuration. ![Google app](google_app.png)

1. On your GitLab server, open the configuration file.

    ```sh

    cd /home/git/gitlab

With this release we are bumping the GitLab CI version to 7.8 in order to be on par with the current GitLab version and

__GitLab CI 7.8 requires GitLab 7.8 or higher and GitLab CI Runner v5__

    sudo service gitlab_ci stop

### 2. Switch to your gitlab_ci user

```

sudo su gitlab_ci

cd /home/gitlab_ci/gitlab-ci

### 5. Update config

GitLab CI 5.4 and above make use of the OAuth2 protocol for authentication with GitLab. This means that after updating GitLab (CI),

you need to create an OAuth2 application in GitLab admin area, which gives you the APP_ID and APP_SECRET.

__GitLab CI 5.4 requires GitLab 7.5 or higher and GitLab CI Runner v5__

    sudo service gitlab_ci stop

### 2. Switch to your gitlab_ci user

```

sudo su gitlab_ci

cd /home/gitlab_ci/gitlab-ci

```

### 5. Update config

GitLab CI 5.4 and above make use of the OAuth2 protocol for authentication with GitLab. This means that after updating GitLab (CI), 

you need to create an OAuth2 application in GitLab admin area, which gives you the APP_ID and APP_SECRET. 

You will have to add APP_ID and APP_SECRET to the GitLab CI config, as such:

__GitLab CI 7.9 requires GitLab 7.9 or higher and GitLab CI Runner v5__

    sudo service gitlab_ci stop

### 2. Switch to your gitlab_ci user

```

sudo su gitlab_ci

cd /home/gitlab_ci/gitlab-ci

```

### 5. Update config

GitLab CI 5.4 and above make use of the OAuth2 protocol for authentication with GitLab. This means that after updating GitLab (CI),

you need to create an OAuth2 application in GitLab admin area, which gives you the APP_ID and APP_SECRET.

You will have to add APP_ID and APP_SECRET to the GitLab CI config, as such:

site_url: /

site_description: GitLab

repo_url: https://gitlab.com/gitlab-org/gitlab-ce/

- ['workflow/authorization_for_merge_requests.md', 'User Guide', 'Merge Request Authorization']

- ['workflow/gitlab_flow.md', 'User Guide', 'GitLab flow']

- ['workflow/import_projects_from_github.md', 'User Guide', 'GitHub import']

- ['workflow/import_projects_from_gitlab_com.md', 'User Guide', 'GitLab import']

- ['install/database_mysql.md', 'Installation', 'MySQL setup for manual installations']

- ['install/structure.md', 'Installation', 'GitLab directory structure']

- ['integration/github.md', 'Administrator Guide', 'Integration - GitHub']

- ['integration/gitlab.md', 'Administrator Guide', 'Integration - GitLab']

- ['integration/gitlab_buttons_in_gmail.md', 'Administrator Guide', 'Integration - GitLab buttons in Gmail']

- ['integration/google.md', 'Administrator Guide', 'Integration - Google']

- ['api/notes.md', 'API', 'Notes']

- ['api/oauth2.md', 'API', 'OAuth2']

- [API](api/README.md) Automate GitLab via a simple and powerful API.

- [GitLab as OAuth2 authentication service provider](integration/oauth_provider.md). It allows you to login to other applications from GitLab.

- [GitLab Basics](gitlab-basics/README.md) Find step by step how to start working on your commandline and on GitLab.

- [Importing to GitLab](workflow/importing/README.md).

- [Markdown](markdown/markdown.md) GitLab's advanced formatting system.

- [Migrating from SVN](workflow/importing/migrating_from_svn.md) Convert a SVN repository to Git and GitLab

- [Permissions](permissions/permissions.md) Learn what each role in a project (guest/reporter/developer/master/owner) can do.

- [SSH](ssh/README.md) Setup your ssh keys and deploy keys for secure access to your projects.

- [Web hooks](web_hooks/web_hooks.md) Let GitLab notify you when new code has been pushed to your project.

- [Workflow](workflow/README.md) Using GitLab functionality and importing projects from GitHub and SVN.

- [Quick Start](ci/quick_start/README.md)

- [Enable or disable GitLab CI](ci/enable_or_disable_ci.md)

- [Configuring project (.gitlab-ci.yml)](ci/yaml/README.md)

- [API](api/README.md) Automate GitLab via a simple and powerful API.

- [GitLab as OAuth2 authentication service provider](integration/oauth_provider.md). It allows you to login to other applications from GitLab.

- [GitLab Basics](gitlab-basics/README.md) Find step by step how to start working on your commandline and on GitLab.

- [Importing to GitLab](workflow/importing/README.md).

- [Markdown](markdown/markdown.md) GitLab's advanced formatting system.

- [Permissions](permissions/permissions.md) Learn what each role in a project (guest/reporter/developer/master/owner) can do.

- [SSH](ssh/README.md) Setup your ssh keys and deploy keys for secure access to your projects.

- [Web hooks](web_hooks/web_hooks.md) Let GitLab notify you when new code has been pushed to your project.

- [Workflow](workflow/README.md) Using GitLab functionality and importing projects from GitHub and SVN.

+ [Test Clojure applications](ci/examples/test-clojure-application.md)

+ Help your favorite programming language and GitLab by sending a merge request with a guide for that language.

- [Log system](logs/logs.md) Log system.

- [Operations](operations/README.md) Keeping GitLab up and running

- [Raketasks](raketasks/README.md) Backups, maintenance, automatic web hook setup and the importing of projects.

- [Security](security/README.md) Learn what you can do to further secure your GitLab instance.

- [API](api/README.md) Automate GitLab via a simple and powerful API.

- [GitLab as OAuth2 authentication service provider](integration/oauth_provider.md). It allows you to login to other applications from GitLab.

- [GitLab Basics](gitlab-basics/README.md) Find step by step how to start working on your commandline and on GitLab.

- [Importing to GitLab](workflow/importing/README.md).

- [Markdown](markdown/markdown.md) GitLab's advanced formatting system.

- [Migrating from SVN](migration/README.md) Convert a SVN repository to Git and GitLab

- [Permissions](permissions/permissions.md) Learn what each role in a project (guest/reporter/developer/master/owner) can do.

- [SSH](ssh/README.md) Setup your ssh keys and deploy keys for secure access to your projects.

- [Web hooks](web_hooks/web_hooks.md) Let GitLab notify you when new code has been pushed to your project.

- [Workflow](workflow/README.md) Using GitLab functionality and importing projects from GitHub and SVN.

- [Quick Start](ci/quick_start/README.md)

- [Configuring project (.gitlab-ci.yml)](ci/yaml/README.md)

- [Test Clojure applications](ci/examples/test-clojure-application.md)

- Help your favorite programming language and GitLab by sending a merge request with a guide for that language.

- [API](api/README.md) Automate GitLab via a simple and powerful API.

- [GitLab as OAuth2 authentication service provider](integration/oauth_provider.md). It allows you to login to other applications from GitLab.

- [GitLab Basics](gitlab-basics/README.md) Find step by step how to start working on your commandline and on GitLab.

- [Importing to GitLab](workflow/importing/README.md).

- [Markdown](markdown/markdown.md) GitLab's advanced formatting system.

- [Permissions](permissions/permissions.md) Learn what each role in a project (guest/reporter/developer/master/owner) can do.

- [SSH](ssh/README.md) Setup your ssh keys and deploy keys for secure access to your projects.

- [Web hooks](web_hooks/web_hooks.md) Let GitLab notify you when new code has been pushed to your project.

- [Workflow](workflow/README.md) Using GitLab functionality and importing projects from GitHub and SVN.

- [Test Clojure applications](ci/examples/test-clojure-application.md)

- Help your favorite programming language and GitLab by sending a merge request with a guide for that language.

- [Log system](logs/logs.md) Log system.

- [Operations](operations/README.md) Keeping GitLab up and running

- [Raketasks](raketasks/README.md) Backups, maintenance, automatic web hook setup and the importing of projects.

      # Need this if under RELATIVE_URL_ROOT

      unless Gitlab.config.gitlab.relative_url_root.empty?

        # If website is mounted using relative_url_root need to remove it first

        @env['PATH_INFO'] = @request.path.sub(Gitlab.config.gitlab.relative_url_root,'')

      lfs_response = Gitlab::Lfs::Router.new(project, @user, @request).try_call

      if project && authorized_request?

        # Tell gitlab-workhorse the request is OK, and what the GL_ID is

    def allow_basic_auth?

      return true unless Gitlab.config.kerberos.enabled &&

                         Gitlab.config.kerberos.use_dedicated_port &&

    def oauth_access_token_check(login, password)

      if login == "oauth2" && git_cmd == 'git-upload-pack' && password.present?

    def authenticate_user(login, password)

      user = Gitlab::Auth.new.find(login, password)

      # whether to block requests from this IP.

      config = Gitlab.config.rack_attack.git_basic_auth

- [API](api/README.md) Automate GitLab via a simple and powerful API.

- [GitLab as OAuth2 authentication service provider](integration/oauth_provider.md). It allows you to login to other applications from GitLab.

- [GitLab Basics](gitlab-basics/README.md) Find step by step how to start working on your commandline and on GitLab.

- [Importing to GitLab](workflow/importing/README.md).

- [Markdown](markdown/markdown.md) GitLab's advanced formatting system.

- [Permissions](permissions/permissions.md) Learn what each role in a project (guest/reporter/developer/master/owner) can do.

- [SSH](ssh/README.md) Setup your ssh keys and deploy keys for secure access to your projects.

- [Web hooks](web_hooks/web_hooks.md) Let GitLab notify you when new code has been pushed to your project.

- [Workflow](workflow/README.md) Using GitLab functionality and importing projects from GitHub and SVN.

- [Quick Start](ci/quick_start/README.md)

- [Configuring project (.gitlab-ci.yml)](ci/yaml/README.md)

- [Test Clojure applications](ci/examples/test-clojure-application.md)

- Help your favorite programming language and GitLab by sending a merge request with a guide for that language.

# Twitter OAuth2 OmniAuth Provider

1.  Fill in the application details.

    - Name: This can be anything. Consider something like "\<Organization\>'s GitLab" or "\<Your Name\>'s GitLab" or

    - Description: Create a description.

    - Website: The URL to your GitLab installation. 'https://gitlab.example.com'

    - Callback URL: 'https://gitlab.example.com/users/auth/twitter/callback'

    - Agree to the "Rules of the Road."

1.  On your GitLab server, open the configuration file.

    ```sh

      sudo editor /etc/gitlab/gitlab.rb

    ```sh

      cd /home/git/gitlab

# Twitter OAuth2 OmniAuth Provider

1.  Fill in the application details.

    - Name: This can be anything. Consider something like "\<Organization\>'s GitLab" or "\<Your Name\>'s GitLab" or

    - Description: Create a description.

    - Website: The URL to your GitLab installation. 'https://gitlab.example.com'

    - Callback URL: 'https://gitlab.example.com/users/auth/twitter/callback'

    - Agree to the "Developer Agreement".

1.  On your GitLab server, open the configuration file.

    ```sh

      sudo editor /etc/gitlab/gitlab.rb

    ```sh

      cd /home/git/gitlab