Gitlab Authentication

ID: gitlab-oauth

The GitLab Authentication Plugin provides a means of using GitLab for authentication and authorization to secure Jenkins. GitLab Enterprise is also supported.


Before configuring the plugin you must create a GitLab application registration. In the Scopes section mark api.

the authorization callback URL takes a specific value. It must be where is the location of the Jenkins server.

The Client ID and the Client Secret will be used to configure the Jenkins Security Realm. Keep the page open to the application registration so this information can be copied to your Jenkins configuration.

Security Realm in Global Security

The security realm in Jenkins controls authentication (i.e. you are who you say you are). The GitLab Authentication Plugin provides a security realm to authenticate Jenkins users via GitLab OAuth.

  1. In the Global Security configuration choose the Security Realm to be GitLab Authentication Plugin.
  2. The settings to configure are: GitLab Web URI, GitLab API URI, Client ID, Client Secret, and OAuth Scope(s).
  3. If you're using GitLab Enterprise then the API URI is The prefix "api/v3" will be completed by the plugin

In the plugin configuration pages each field has a little question mark icon next to it. Click on it for help about the setting.

Version History

Please refer to the changelog

ArchivesGet past versions
Version: 1.10
Requires Jenkins 2.89.2
Installs: 15,091
Mohamed El Habib
Help us improve this page!
To propose a change submit a pull request to the plugin page on GitHub.
Previous Security Warnings