Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to use GitLab Releases API?

Tags:

gitlab

GitLab now has nice feature called "Releases". You can define "release" as combination of "tag + some description + some URLs" and it will be shown on "Releases" and "Tags" pages of your project. GitLab doc says:

we recommend doing this as one of the last steps in your CI/CD release pipeline

But, wait! CI/CD job by default has no access to API calls or write to git repository. We can configure "deploy token" or "deploy key" for access to repository and use them (via "secret variables") in build scripts. But neither "deploy token", nor "deploy key" give access to API.

So, we can't create release from CI/CD job using its environment variables, we can't use deploy tokens, we can't use deploy keys. So, what exactly GitLab suggests us to do when it says: "we recommend doing this as one of the last steps in your CI/CD release pipeline" ?

like image 251
Ezh Avatar asked Jun 07 '19 10:06

Ezh

People also ask

How do I access GitLab API?

To authorise access to the GitLab API, you need to provide the base URL of your GitLab instance. If you're a GitLab.com user, the base URL is https://gitlab.com .

What is release in GitLab?

GitLab's integrated CD solution allows you to ship code with zero-touch, be it on one or one thousand servers. GitLab helps automate the release and delivery of applications, shortening the delivery lifecycle, streamlining manual processes, and accelerating team velocity.

1 Answers

This previous question highlighted the same issue, pointing out you need to access in your CI/CD release pipeline to (from doc)

  • either OAuth2 tokens
  • Personal access tokens
  • Session cookie

This is not limited to release.
As seen in gitlab-ce issue 61108: "Allow tags to be managed with CI_JOB_TOKEN"

However, it turns out that tags cannot be removed by simply using the CI_JOB_TOKEN.
Instead I would need to have create an access token and pass this as CI variable to be able to call this API from within the CI jobs.

Other examples:

  • gitlab-ce issue 60643: "Download releases using deploy tokens."
  • gitlab-ce issue 58235: "Allow JOB_TOKEN to access Releases API"

However, it turns out the call to this REST API does not work with the JOB_TOKEN header but only with the PRIVATE_TOKEN.
Is this limitation intended?

I don't want to maintain extra Private tokens just for manipulating the assets of the release.

That means for now (June 2019), maintaining an extra Private token, and passing it as CI variable might be the only available workaround, pending those issues to be resolved.
That would use, I supposed, a masked variable (GitLab 11.0+)

like image 141
VonC Avatar answered Oct 23 '22 03:10

VonC
Sign in to Comment

Related questions

Stop cleanup between two stages in gitlab-runner
gitlab-ci.yml python -c 'multiple line cmd' failed
GitlabCi slow build with docker and mysql service
Add images to README.org files in Gitlab
how to integrate cmake in gitlab repository for Continuous Integration(CI)
getting 502 errors with Gitlab
Pushing Docker image from gitlab-ci to Azure Container Registry
MongoDB server doesn't start at gitlab runner using gitlab-ci
Can I use Dockerfiles in .gitlab-ci.yml?
Tagging a Docker image with Version in Gitlab with yaml
Gitlab Coverage badge not working
Adding custom project templates to GitLab
build running automatically in gitlab
Clone external private submodule with deploy token from Gitlab-CI
Gitlab CI/Docker: ssh-add keeps asking for passphrase
how to run pipeline only on HEAD commit in GitlabCi runner?
How can I set up Continuous Integration of a Dockerized application to Elastic Beanstalk?
Two Docker images in GitLab CI .yaml
Delete or reset Gitlab CI builds
Retrieve the commit hash

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!