Is it possible to use Gitlab as an oauth provider?

Question

I know that it is possible to log into Gitlab with external providers such as Github. However, I was wondering if Gitlab's oauth can be used to authenticate users to my application?

Is there an oauth endpoint that I can use?

Answer 1

It should be possible since the suggestion "Oauth system for third party application" seems completed with GitLab 7.7 (which is to be released)

It would be powerful to have an oauth authentication system with application management like Github.

If this feature appear on Gitlab, developers would be able to create many third party applications like Travis-CI or Scrutinizer who can Interact directly with a "Gitlab Connect" system, same as Github or Bitbucket.

We should manage authorization scope too (profile view / edit, group access, projects access etc...).

GitLab team (Admin, Gitlab) responded · Dec 22, 2014

Completed In GitLab 7.7

See the diff between GitLab 7.6 and 7.7 and:

• commit ed932d8
• commit f9ece12

---

February 2016 edit, complementary links:

• GitLab as OAuth2 authentication service provider
• GitLab as an OAuth2 client
• Doorkeeper, what GitLab uses to implement OAuth

---

Note: with GitLab 13.11 (April 2021)

Register OAuth applications at the group level

Group owners can now register OAuth applications for a group.

Previously, OAuth applications could only be registered by individual users or at the instance level.

Making this functionality available at the group level reduces the administrative burden for instance administrators and removes the dependency on individual users for the configuration of OAuth applications.

Thanks to the amazing work from GitLab contributor Jonas Wälter from Siemens, this feature is now available in 13.11.

See Documentation and Issue.

Answer 2

No, it is not. Currently the only supported scope is api which gives the authentication client full access to everything in the user's name. See https://gitlab.com/gitlab-org/gitlab-ce/issues/22323 to track progress.