{ "port": 8080, // Can also use environment variable GITLAB_AF_PORT // If 'secret' is none-empty, http header GITLAB_AF_SECRET is used to authorize requests. // For example: curl --header "GITLAB_AF_SECRET: XXXXXXX" http://xxxx.com/api/v4/projects "secret": "", "upstream": { "url": "https://gitlab.example.com", // Can also use environment variable GITLAB_AF_URL "accessToken": "" // Can also use GITLAB_AF_ACCESS_TOKEN environment variable. The token is acquired from https://gitlab.example.com/profile/personal_access_tokens }, "blacklist": [ "/api/v4/projects/:id/repository*", "/api/v4/projects/:id/search" ], "whitelist": [ "/api/v4/projects/:id/repository/branches", "/api/v4/projects/:id/repository/tags", "/api/v4/projects/:id/repository/commits" ] }