Threatrix Documentation
Threatrix
  • Getting Started
  • Developer Quick Start
  • SecureShip
    • Artifactory Scanning
    • ThreatAgent Scanning
  • Threat Center
    • Creating Account
      • OAuth Login
    • Entity Dashboard
    • User Profile
  • AICertify
    • Reviewing Results
  • codecertify
    • Quick Start
    • Project Summary Tab
    • Components Tab
      • Custom Components
        • Adding
        • Editing
        • Important Notes
      • Header Panel
      • Module Tree Panel
      • Results Panel
        • Card View
        • Risk Graph View
      • Audit History
    • Assets Tab
      • Custom Asset Matches
        • Adding Asset Match
  • securecore
    • Project Dashboard
    • ThreatScan
    • Scan Results
  • Threat Agent
    • Threat Agent Overview
    • Threat Agent - Installation & Scanning
    • Scan Summary Reports
    • Resolving Errors
    • Scanning Container Images
  • Integrations
    • Dependency Managers
      • RENV
    • Build Integrations
      • AWS CodeBuild
      • Azure DevOps
      • Bitbucket Pipeline
      • CircleCI
      • GitHub Action
      • GitLab Pipeline
      • Jenkins Pipeline
    • SCM Integrations
      • GitLab
      • Bitbucket
    • Issue Management
      • Jira
    • Notifications
  • Policy Management
    • Policy Overview
    • Creating Policies
    • Policy Conditions
    • Policy Actions
    • Policy Scopes
  • Administration
    • User Management
    • Organization Settings
      • Organization Knowledge Base
      • Integration
        • Slack Integration
        • Jira Integration
        • Service Keys
    • RBAC
    • Entity Management
    • Okta
      • Okta Org2Org Integration
  • GraphQL API
    • API Overview
  • Resources
    • Dependency Managers
      • PIP
    • Dictionary
    • Licenses
    • Security & Privacy
    • Binary File Support
  • Hybrid / On Premise
    • Getting Started
    • Installation
    • Upgrade
    • Setup
    • Cloud Data Disclosure
    • Troubleshooting
Powered by GitBook
On this page
  • Prepare for SCM Integration Setup
  • Create Instance or Group GitLab OAuth Application
  • Complete SCM Integration

Was this helpful?

  1. Integrations
  2. SCM Integrations

GitLab

Prepare for SCM Integration Setup

  • Within Threat Center, navigate to Admin-> Settings->Integrations->SCM Integrations.

  • Take note of your Redirect URL as you'll need it in the next step.

Create Instance or Group GitLab OAuth Application

Login to GitLab with a user that has permission to create an application

  1. Login to GitLab with a user that has permission to create an application

    1. This should be a service account.

  2. Navigate to the group for which you wish to add the application

  3. On the left menu, select Select Settings -> Applications

  4. Click "Add new application"

  5. Enter Name "Threatrix"

  6. Enter the Redirect URIfrom the Threatrix dashboard

  7. Select the following permissons:

    • api (Access the authenticated user's API)

    • read_user (Read the authenticated user's personal information)

    • read_repository (Allows read-only access to the repository)

    • write_repository (Allows read-write access to the repository)

  8. Click "Save application"

Copy your application ID and Secret as you'll need them for the next step.

Complete SCM Integration

In Threat Center, SCM Integration, complete the following fields

  • Name: Use a unique name that employees will recognize, like your team, group or division. If necessary, add the SCM type if there are more than one in the same group.

  • Provider Type: Select GITLAB from the

  • Base URL: This is the URL of your SCM server

  • Token URL: The Token URL of your server

  • Authorization URL: The authorization URL of your server

  • Client ID / Application ID: This is the Application ID or Client ID provided to you when you created your application in your SCM

  • Client Secret / Secret: This is the secret provided to you when you created your application in your SCM.

PreviousSCM IntegrationsNextBitbucket

Last updated 11 months ago

Was this helpful?