diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2023-09-19 12:10:17 +0300 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2023-09-19 12:10:17 +0300 |
commit | 236caf4b92c8cc8b00dcacf81bb9e1ec1f798370 (patch) | |
tree | bcb67ec12f45e98081f593f9a6266ee33993bf02 /doc/security/token_overview.md | |
parent | 8b13b280f53bc4895c2e92b7dae7b23a95480104 (diff) |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'doc/security/token_overview.md')
-rw-r--r-- | doc/security/token_overview.md | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/doc/security/token_overview.md b/doc/security/token_overview.md index e5316f0f980..f605e95dfbf 100644 --- a/doc/security/token_overview.md +++ b/doc/security/token_overview.md @@ -20,9 +20,8 @@ You can create [Personal access tokens](../user/profile/personal_access_tokens.m You can limit the scope and expiration date of your personal access tokens. By default, they inherit permissions from the user who created them. -You can use the [personal access tokens API](../api/personal_access_tokens.md) to -programmatically take action, such as -[rotating a personal access token](../api/personal_access_tokens.md#rotate-a-personal-access-token). +You can use the personal access tokens API to programmatically take action, +such as [rotating a personal access token](../api/personal_access_tokens.md#rotate-a-personal-access-token). You will receive an email when personal access tokens are 7 days or less from expiration. @@ -121,6 +120,9 @@ Malicious access to a runner's file system may expose the `config.toml` file and runner authentication token. The attacker could use the runner authentication to [clone the runner](https://docs.gitlab.com/runner/security/#cloning-a-runner). +You can use the `runners` API to +programmatically [rotate or revoke a runner authentication token](../api/runners.md#reset-runners-authentication-token-by-using-the-current-token). + ## Runner registration tokens (deprecated) WARNING: |