The first time I tried using forum.gitlab.com, I tried logging in with gitlab, however this appears to request “complete read/write access”, with the following page:
Authorize forum.gitlab.com to use your account?
An application called forum.gitlab.com is requesting access to your GitLab account. Please note that this application is not provided by GitLab and you should verify its authenticity before allowing access.This application will be able to:
Access the authenticated user’s API
Grants complete read/write access to the API, including all groups and projects.
Does this mean that agreeing to this authorization, forum.gitlab.com would get access to all my code, etc. in all of my gitlab.com repos? That seems overly broad and completely unnecessary, considering that I assume forum.gitlab.com would only need information about my identity (say, username, profile picture, maybe email address), but I see no reason why it would actually need access to my repos. Still, this is what the above text appears to indicate, so I obviously didn’t accept it and created a new account (i.e. login with email) for forum.gitlab.com.
Note that there is an old question from two years ago about the same topic, but that received no answers, see http://forum.gitlab.com/t/unclear-permissions-required-when-gitlab-is-used-to-authorize-discourse/9543