Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Let’s connect your GitLab integration! Data Theorem’s SAST can connect to GitLab.com, GitLab On-Prem, and GitLab Ultimate.

Onboarding your GitLab instance will require communication with Data Theorem. Please reach out to support@datatheorem.com if you need help!

Onboard GitLab (Cloud)

Note that the onboarding user must be an admin within your GitLab workspace.

  1. Navigate to gitLab.com.

  2. Select Groups and select the group that you would like to connect to Data Theorem's SAST analyzer.

  3. Select Settings, then Applications.

  4. Select Add new application.

  5. Configure the application using the following options:

    • Name: Data Theorem SAST

    • Trusted: Not required

    • Redirect URI: https://www.securetheorem.com/gitlab-integration/onboarding

    • Confidential: checked

    • Scoped: api and read_repository

  6. Select Save Application

  7. Send the URL, the Application ID, and the Secret to your Data Theorem contact. These are the credentials that the Data Theorem SAST Analyzer will use to connect to your GitLab instance.

  1. Important: Click the link in the email, then click Authorize.

  2. Your GitLab Ultimate instance has been successfully onboarded! Your source code will now continuously be scanned for security and privacy issues, which can be found on https://www.securetheorem.com/mobile-secure/v2/security/sast?view=issues or directly in your GitLab Ultimate merge requests.

Onboard GitLab (Self-Managed)

Requirements

  • The GitLab installation must be exposed to the internet

  • The user following these instructions must have administrator permissions to the GitLab instance

  • AWS Account with Admin Access

Onboarding the GitLab installation

Start with creating the GitLab application for the Data Theorem integration:

  • Log into the GitLab instance

  • Open “Applications” in the Admin Area

  • Create a new application with the following settings

    • Name: Data Theorem SAST

    • Trusted: Not required

    • Redirect URI: https://www.securetheorem.com/gitlab-integration/onboarding

    • Confidential: checked

    • Scoped: api and read_repository

  • The application settings should look like this:

  • After pressing “Save application”, securely make a note of the Application ID, Secret, and instance URL (from the address bar of your browser)

Deploy AWS Resources

Paste the values for the GitLab App Id, Gitlab App Secret

Configuring the system hook

The system hook will notify the GitLab integration of changes to any of the repositories present in the GitLab integration.

Once the Data Theorem SAST application has been created in the GitLab instance. You should have received an email titled “GitLab hook authorization token”. Please reach out to the Data Theorem support team if you haven’t received this email.

Configuration steps:

  • Log into the GitLab instance

  • Open “System Hooks” in the Admin Area

  • Create a new system hook with the following settings:

    • URL: Past the value of the CloudFormation Template

    • Secret Token: Copy and paste the code from the email

    • Trigger:

      • Check “Repository update events”

      • Check “Merge request events”

    • Check “SSL verification”

  • The system hook should look like this:

    Press “Add system hook”

  • No labels