Allow targeted API access for ai_workflows scope (!162671) · Merge requests · GitLab.org / GitLab

Jessie Young requested to merge jy-ai-workflows-scope into master Aug 14, 2024

What does this MR do and why?

Allows access to specific endpoints with the ai_workflows scope

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

How to set up and validate locally

In rails console enable the Duo Workflow feature flag
```
Feature.enable(:duo_workflow)
```

Invoke the class to generate an oauth token with the ai_workflow scope

Ai::DuoWorkflows::CreateOauthAccessTokenService.new(current_user: User.first).execute

This token can be used to authenticate various endpoints. For example:

 curl --header "Authorization: Bearer $TOKEN_FROM_LAST_STEP" --url "https://gdk.test/api/v4/ai/duo_workflows/direct_access"

Edited Aug 16, 2024 by Jessie Young

Allow targeted API access for ai_workflows scope

What does this MR do and why?

MR acceptance checklist

How to set up and validate locally

Merge request reports