Gitlab.com restricting the creating/viewing of application from API

[pedroleaoc]

If solved, this could simplify the process of creating an application on gitlab.com

[claudiubelu]

Trying to access the gitlab.com's /applications endpoint [1] can result in a 403 Forbidden error. This can be easily checked by running this command:

curl -X GET https://gitlab.com/api/v4/applications -H 'private-token: redacted'

Output:

{"message":"403 Forbidden"}

The private token can be generated in gitlab.com, and even with all the permissions set, 403 Forbidden is still being hit. [1] mentions that this is an Administrator API (Only administrator users can use the Applications API.), however, you are able to view / create Applications in gitlab.com easily and without any issues.

We're using that API to list the applications and then create an application in the Legend Juju GitLab Integrator Charm. But because of this issue, we can't have the Charm create an application automatically for us, we have to create the Application manually ourselves, and then pass in to the Charm the bypass-client-id and bypass-client-secret config options. This basically adds quite a few extra steps to getting started with Legend.

[1] https://docs.gitlab.com/ee/api/applications.html

[claudiubelu]

Opened forum post: 403 Forbidden when accessing the https://gitlab.com/api/v4/applications API: https://forum.gitlab.com/t/getting-the-ssl-certificate-in-python-ends-with-a-ssl-sslv3-alert-handshake-failure-error/64590
Opened feature request: CRUD User Applications through the API: https://gitlab.com/gitlab-org/gitlab/-/issues/358133#note_905090798
Opened feature request: /applications API - update existing applications not available: https://gitlab.com/gitlab-org/gitlab/-/issues/359065

Related: finos/legend-juju-gitlab-integrator#10