Can anyone shed some light on what is the difference between the workflow described on
and the one described on
In the first link I’m assuming the thing running on
localhost:3000 is supposed to be GitLab.
The two pages seem to describe different parts of the exact same thing:
- The user (or an admin) creates an Application in GitLab
- Ther user wants to grant some other application access to his GitLab account
- The other application requests an authorization code from GitLab by sending the user to the
oauth/authorizeendpoint in GitLab and exchanges the code for an access token
- The other application issues API requests on behalf of the user
The pages link to each other, giving the impression that they describe opposite things, but do they really do that?