GitLab
This tutorial provides step-by-step instructions on how to rotate a GitLab Personal Access Token.
Generate a new GitLab Personal Access Token
Step 1 - Navigate to the Personal Access Token page
Navigate to https://gitlab.com/-/profile/personal_access_tokens.
Step 2 - Generate a new Personal Access Token
2a. Configure the access token
Provide a Token Name, set an Expiration Date and select token scopes (permissions).
2b. Click on Create personal access token.
2c. View/Copy the new token
Replace the Leaked GitLab Personal Access Token
Replace the leaked GitLab Personal Access Token with the new one in all impacted applications and services.
Revoke the Leaked GitLab Personal Access Token
Step 1 - Navigate to the Personal Access Token page
Navigate to https://gitlab.com/-/profile/personal_access_tokens.
Step 2 - Revoke the Personal Access Token
2a. Delete the leaked token
Click on the delete icon under the “Action” column in the row corresponding to the token that you want to delete.
2b. Confirm deletion
Click Revoke to confirm deletion.
A message will appear indicating the token was deleted.
