Failing to git push with project access token

sba · September 2, 2020, 12:37pm

Hello,

I have some automated job which regularly pushes commits using a personal access token, like this:

git push https://myusername:${PERSONAL_ACCESS_TOKEN}@gitlab.mydomain.com/mygroup/myproject.git

It works.

However, because my own personal token is used, the pushed commits are reported as coming from me.
I would prefer them to come from a bot user.
I tried to use the new project access tokens

I went to mygroup/myproject settings and created a project access token with write_repository scope.
Alas, the git push fails:

$ git push https://myusername:${PROJECT_ACCESS_TOKEN}@gitlab.mydomain.com/mygroup/myproject.git
remote: HTTP Basic: Access denied
fatal: Authentication failed for 'https://myusername:xxxxxxxxx@gitlab.mydomain.com/mygroup/myproject.git/'

Shouldn’t this work?
The doc explicitly mentions using the token for API access, but not for git access (But what would be the purpose of the write_repository scope without a git access ?).
I’m using gitlab 13.3.1-ee.

rpadovani · September 2, 2020, 7:52pm

I am not sure, but have you tried with git push https://project_{project_id}_bot:${PROJECT_ACCESS_TOKEN}@gitlab.mydomain.com/mygroup/myproject.git? Using project_{project_id}_bot instead of myusername?

sba · September 3, 2020, 8:56am

Thank you for your help

have you tried with git push https://project_{project_id}_bot:${PROJECT_ACCESS_TOKEN}@gitlab.mydomain.com

I just tried, using the bot username I could find at https://gitlab.mydomain.com/mygroup/myproject/activity
(because I made several attempts, the format is project_{project_id}_bot{bot_number}).

It did not work.

This was expected: AFAIK the username is not used at all. I can sucessfully push with

git push https://whatever:${PERSONAL_ACCESS_TOKEN}@gitlab.mydomain.com/mygroup/myproject.git

rpadovani · September 3, 2020, 9:53am

I don’t know if you are the same user, but someone raised the same issue on the Gitlab issue tracker, so I suppose the best thing is waiting for a triage by someone from the Gitlab team: https://gitlab.com/gitlab-org/gitlab/-/issues/244491

sba · September 7, 2020, 7:57am

yes this is the same issue (and I’m not the reporter).

I reached Gitlab support which confirmed there is currently no workaround.

They also hinted at tweaking the author (in git config) for commits done by the automated job in order to distinguish them from the ones I do myself.
This is a good idea.
However, the pipelines triggered when the job pushes those commits still appears as being triggered by me.
I’ll wait for the project token to be fixed to improve that part.

Thank you again!

Topic		Replies	Views
I can't push to my own public remote How to Use GitLab	4	2150	November 27, 2023
Commit / push with project access token GitLab CI/CD token	1	4418	July 22, 2021
Authentication fails when trying to mirror GitLab.com repo to GitHub How to Use GitLab	5	13759	September 13, 2023
GIT PUSH using an access_token How to Use GitLab	0	1038	February 6, 2017
How to git clone via https with personal access token in private project? How to Use GitLab git	3	181362	February 27, 2023

Failing to git push with project access token

Related topics