2020-07-14 20:09:23 -04:00
---
stage: Release
2020-12-01 10:09:28 -05:00
group: Release
2020-11-26 01:09:20 -05:00
info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments
2020-07-14 20:09:23 -04:00
---
2021-09-09 11:09:24 -04:00
# Deploy Tokens API **(FREE)**
2020-02-19 22:08:57 -05:00
2021-09-09 11:09:24 -04:00
## List all deploy tokens **(FREE SELF)**
2020-02-19 22:08:57 -05:00
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-11 02:10:11 -04:00
2021-09-23 18:34:10 -04:00
Get a list of all deploy tokens across the GitLab instance. This endpoint requires the Administrator role.
2020-02-19 22:08:57 -05:00
2020-02-28 07:09:05 -05:00
```plaintext
2020-02-19 22:08:57 -05:00
GET /deploy_tokens
```
2021-04-30 11:09:50 -04:00
Parameters:
| Attribute | Type | Required | Description |
|-----------|----------|------------------------|-------------|
| `active` | boolean | ** {dotted-circle}** No | Limit by active status. |
2020-02-28 07:09:05 -05:00
Example request:
2020-02-19 22:08:57 -05:00
```shell
curl --header "PRIVATE-TOKEN: < your_access_token > " "https://gitlab.example.com/api/v4/deploy_tokens"
```
Example response:
```json
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
2021-04-30 11:09:50 -04:00
"revoked": false,
"expired": false,
2020-02-28 07:09:05 -05:00
"scopes": [
"read_repository",
"read_registry"
]
}
]
```
## Project deploy tokens
2021-05-31 14:09:56 -04:00
Project deploy token API endpoints require the [Maintainer role ](../user/permissions.md ) or higher
for the project.
2020-02-28 07:09:05 -05:00
### List project deploy tokens
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-11 02:10:11 -04:00
2020-02-28 07:09:05 -05:00
Get a list of a project's deploy tokens.
```plaintext
GET /projects/:id/deploy_tokens
```
Parameters:
2021-04-30 11:09:50 -04:00
| Attribute | Type | Required | Description |
|:---------------|:---------------|:-----------------------|:------------|
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | ID or [URL-encoded path of the project ](index.md#namespaced-path-encoding ). |
2021-04-30 11:09:50 -04:00
| `active` | boolean | ** {dotted-circle}** No | Limit by active status. |
2020-02-28 07:09:05 -05:00
Example request:
```shell
curl --header "PRIVATE-TOKEN: < your_access_token > " "https://gitlab.example.com/api/v4/projects/1/deploy_tokens"
```
Example response:
```json
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
2021-04-30 11:09:50 -04:00
"revoked": false,
"expired": false,
2020-02-19 22:08:57 -05:00
"scopes": [
"read_repository",
"read_registry"
]
}
]
```
2020-03-08 20:08:14 -04:00
2020-03-10 05:08:10 -04:00
### Create a project deploy token
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-10 05:08:10 -04:00
Creates a new deploy token for a project.
2020-03-25 02:07:58 -04:00
```plaintext
2020-03-10 05:08:10 -04:00
POST /projects/:id/deploy_tokens
```
2021-04-30 11:09:50 -04:00
Parameters:
| Attribute | Type | Required | Description |
| ------------ | ---------------- | ---------------------- | ----------- |
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | The ID or [URL-encoded path of the project ](index.md#namespaced-path-encoding ) owned by the authenticated user |
2021-04-30 11:09:50 -04:00
| `name` | string | ** {check-circle}** Yes | New deploy token's name |
| `expires_at` | datetime | ** {dotted-circle}** No | Expiration date for the deploy token. Does not expire if no value is provided. Expected in ISO 8601 format (`2019-03-15T08:00:00Z`) |
| `username` | string | ** {dotted-circle}** No | Username for deploy token. Default is `gitlab+deploy-token-{n}` |
| `scopes` | array of strings | ** {check-circle}** Yes | Indicates the deploy token scopes. Must be at least one of `read_repository` , `read_registry` , `write_registry` , `read_package_registry` , or `write_package_registry` . |
Example request:
2020-03-10 05:08:10 -04:00
```shell
2021-06-02 11:09:59 -04:00
curl --request POST --header "PRIVATE-TOKEN: < your_access_token > " --header "Content-Type: application/json" \
--data '{"name": "My deploy token", "expires_at": "2021-01-01", "username": "custom-user", "scopes": ["read_repository"]}' \
"https://gitlab.example.com/api/v4/projects/5/deploy_tokens/"
2020-03-10 05:08:10 -04:00
```
Example response:
```json
{
"id": 1,
"name": "My deploy token",
"username": "custom-user",
"expires_at": "2021-01-01T00:00:00.000Z",
"token": "jMRvtPNxrn3crTAGukpZ",
2021-04-30 11:09:50 -04:00
"revoked": false,
"expired": false,
2020-03-10 05:08:10 -04:00
"scopes": [
"read_repository"
]
}
```
2020-03-12 08:09:17 -04:00
### Delete a project deploy token
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-12 08:09:17 -04:00
Removes a deploy token from the project.
2020-03-25 02:07:58 -04:00
```plaintext
2020-03-12 08:09:17 -04:00
DELETE /projects/:id/deploy_tokens/:token_id
```
2021-04-30 11:09:50 -04:00
Parameters:
| Attribute | Type | Required | Description |
| ---------- | -------------- | ---------------------- | ----------- |
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | The ID or [URL-encoded path of the project ](index.md#namespaced-path-encoding ) owned by the authenticated user |
2021-04-30 11:09:50 -04:00
| `token_id` | integer | ** {check-circle}** Yes | The ID of the deploy token |
2020-03-12 08:09:17 -04:00
Example request:
```shell
2021-06-02 11:09:59 -04:00
curl --request DELETE --header "PRIVATE-TOKEN: < your_access_token > " \
"https://gitlab.example.com/api/v4/projects/5/deploy_tokens/13"
2020-03-12 08:09:17 -04:00
```
2020-03-08 20:08:14 -04:00
## Group deploy tokens
2021-11-25 04:13:54 -05:00
Users with at least the [Maintainer role ](../user/permissions.md ) for the group can list group deploy
tokens. Only group Owners can create and delete group deploy tokens.
2020-03-08 20:08:14 -04:00
2020-04-08 02:09:54 -04:00
### List group deploy tokens
2020-03-11 02:10:11 -04:00
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-11 02:10:11 -04:00
Get a list of a group's deploy tokens
2020-03-25 02:07:58 -04:00
```plaintext
2020-03-11 02:10:11 -04:00
GET /groups/:id/deploy_tokens
```
Parameters:
2021-04-30 11:09:50 -04:00
| Attribute | Type | Required | Description |
|:---------------|:---------------|:-----------------------|:------------|
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | ID or [URL-encoded path of the project ](index.md#namespaced-path-encoding ). |
2021-04-30 11:09:50 -04:00
| `active` | boolean | ** {dotted-circle}** No | Limit by active status. |
2020-03-11 02:10:11 -04:00
Example request:
```shell
curl --header "PRIVATE-TOKEN: < your_access_token > " "https://gitlab.example.com/api/v4/groups/1/deploy_tokens"
```
Example response:
```json
[
{
"id": 1,
"name": "MyToken",
"username": "gitlab+deploy-token-1",
"expires_at": "2020-02-14T00:00:00.000Z",
2021-04-30 11:09:50 -04:00
"revoked": false,
"expired": false,
2020-03-11 02:10:11 -04:00
"scopes": [
"read_repository",
"read_registry"
]
}
]
```
2020-03-11 17:09:19 -04:00
### Create a group deploy token
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-11 17:09:19 -04:00
Creates a new deploy token for a group.
2020-03-25 02:07:58 -04:00
```plaintext
2020-03-11 17:09:19 -04:00
POST /groups/:id/deploy_tokens
```
2021-04-30 11:09:50 -04:00
Parameters:
| Attribute | Type | Required | Description |
| ------------ | ---- | --------- | ----------- |
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | The ID or [URL-encoded path of the group ](index.md#namespaced-path-encoding ) owned by the authenticated user |
2021-04-30 11:09:50 -04:00
| `name` | string | ** {check-circle}** Yes | New deploy token's name |
| `expires_at` | datetime | ** {dotted-circle}** No | Expiration date for the deploy token. Does not expire if no value is provided. Expected in ISO 8601 format (`2019-03-15T08:00:00Z`) |
| `username` | string | ** {dotted-circle}** No | Username for deploy token. Default is `gitlab+deploy-token-{n}` |
| `scopes` | array of strings | ** {check-circle}** Yes | Indicates the deploy token scopes. Must be at least one of `read_repository` , `read_registry` , `write_registry` , `read_package_registry` , or `write_package_registry` . |
2020-03-11 17:09:19 -04:00
Example request:
```shell
2021-06-02 11:09:59 -04:00
curl --request POST --header "PRIVATE-TOKEN: < your_access_token > " --header "Content-Type: application/json" \
--data '{"name": "My deploy token", "expires_at": "2021-01-01", "username": "custom-user", "scopes": ["read_repository"]}' \
"https://gitlab.example.com/api/v4/groups/5/deploy_tokens/"
2020-03-11 17:09:19 -04:00
```
Example response:
```json
{
"id": 1,
"name": "My deploy token",
"username": "custom-user",
"expires_at": "2021-01-01T00:00:00.000Z",
"token": "jMRvtPNxrn3crTAGukpZ",
2021-04-30 11:09:50 -04:00
"revoked": false,
"expired": false,
2020-03-11 17:09:19 -04:00
"scopes": [
"read_registry"
]
}
```
2020-03-08 20:08:14 -04:00
### Delete a group deploy token
2020-05-21 02:08:25 -04:00
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/21811) in GitLab 12.9.
2020-03-11 02:10:11 -04:00
2020-03-08 20:08:14 -04:00
Removes a deploy token from the group.
2020-03-25 02:07:58 -04:00
```plaintext
2020-03-08 20:08:14 -04:00
DELETE /groups/:id/deploy_tokens/:token_id
```
2021-04-30 11:09:50 -04:00
Parameters:
| Attribute | Type | Required | Description |
| ----------- | -------------- | ---------------------- | ----------- |
2021-06-28 11:08:03 -04:00
| `id` | integer/string | ** {check-circle}** Yes | The ID or [URL-encoded path of the project ](index.md#namespaced-path-encoding ) owned by the authenticated user |
2021-04-30 11:09:50 -04:00
| `token_id` | integer | ** {check-circle}** Yes | The ID of the deploy token |
2020-03-08 20:08:14 -04:00
Example request:
```shell
curl --request DELETE --header "PRIVATE-TOKEN: < your_access_token > " "https://gitlab.example.com/api/v4/groups/5/deploy_tokens/13"
```