Connecting Kawach & GitLab Accounts

Overview

This article explains how to integrate GitLab with Kawach to enable centralized compliance monitoring across your GitLab environment. Once connected, Kawach can monitor projects and users at the GitLab Group level in read-only mode and surface relevant findings as part of your compliance and risk workflows.

This integration helps ensure that source code management, access controls, and user activity signals are consistently tracked and available for audits, reviews, and internal assessments.

</section>

Prerequisites

Before starting the integration, ensure the following:

Your organization has an active GitLab account.
The GitLab resources you want to monitor are organized under a GitLab Group.
You are a Group Owner or have sufficient privileges to authorize third-party applications.
You have access to your organization’s Kawach account with permissions to manage integrations.

What Kawach Accesses

Kawach connects to GitLab in read-only mode. It does not modify any code, configuration, or settings in your GitLab account.

Once connected, Kawach can:

Read GitLab group, project, and user information
Access read-only user profile data via the /user and /users API endpoints
Read username, full name, and public email information using OpenID Connect
Monitor access-related signals relevant to compliance and operational risk

Your source code and project configurations remain unchanged during monitoring.

Steps to Integrate GitLab with Kawach

Step 1: Navigate to Integrations in Kawach

Log in to your Kawach account.
Go to Settings.
Select the Integrations tab.
Click Create.
Locate GitLab from the list of available integrations.
Click Connect.

Step 2: Authorize Kawach in GitLab

You will be redirected to the GitLab sign-in page.
Sign in using your organization GitLab account.
Review the permissions requested by Kawach.
Approve the Kawach application for your GitLab group.

Note: You must be a GitLab Group Owner or have sufficient privileges to authorize third-party applications. Personal GitLab accounts are not supported.

Step 3: Confirm Group Access

After authorization:

Confirm the GitLab Group you want Kawach to monitor.
Review the read-only access scope.
Kawach will begin syncing data for all projects and users within the selected group.

After the Integration

Once the integration is complete:

GitLab projects and users are continuously monitored within Kawach.
Relevant findings can be surfaced as part of compliance workflows.
Teams get centralized visibility across their GitLab environment without switching tools.

This setup supports ongoing compliance by ensuring development and access-related evidence is consistently available.

Troubleshooting

Pin icon Authorization failed

⌄

Ensure you are signing in with the correct GitLab organization account and have Group Owner permissions.

Pin icon Projects or users not visible

⌄

Verify that the selected GitLab group contains the expected projects and users.

Pin icon Data not syncing

⌄

Allow a few minutes after setup. If issues persist, try reconnecting the integration.