debian-mirror-gitlab/doc/user/project/pages/pages_access_control.md

---
type: reference, howto
stage: Release
group: Release Management
info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#designated-technical-writers
---

# GitLab Pages Access Control

> - [Introduced](https://gitlab.com/gitlab-org/gitlab-foss/issues/33422) in GitLab 11.5.
> - Available on GitLab.com in GitLab 12.4.

You can enable Pages access control on your project, so that only
[members of your project](../../permissions.md#project-members-permissions)
(at least Guest) can access your website:

<i class="fa fa-youtube-play youtube" aria-hidden="true"></i>
For a demonstration, see [Pages access controls](https://www.youtube.com/watch?v=tSPAr5mQYc8).

1. Navigate to your project's **Settings > General** and expand **Visibility, project features, permissions**.
1. Toggle the **Pages** button to enable the access control.

   NOTE: **Note:**
   If you don't see the toggle button, that means that it's not enabled.
   Ask your administrator to [enable it](../../../administration/pages/index.md#access-control).

1. The Pages access control dropdown allows you to set who can view pages hosted
   with GitLab Pages, depending on your project's visibility:

   - If your project is private:
     - **Only project members**: Only project members will be able to browse the website.
     - **Everyone**: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.
   - If your project is internal:
     - **Only project members**: Only project members will be able to browse the website.
     - **Everyone with access**: Everyone logged into GitLab will be able to browse the website, no matter their project membership.
     - **Everyone**: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.
   - If your project is public:
     - **Only project members**: Only project members will be able to browse the website.
     - **Everyone with access**: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.

1. Click **Save changes**.

The next time someone tries to access your website and the access control is
enabled, they will be presented with a page to sign into GitLab and verify they
can access the website.

## Terminating a Pages session

If you want to log out from your Pages website,
you can do so by revoking application access token for GitLab Pages:

1. Navigate to your profile's **Settings > Applications**.
1. Find **Authorized applications** at the bottom of the page.
1. Find **GitLab Pages** and press the **Revoke** button.
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`---`
			`type: reference, howto`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`stage: Release`
			`group: Release Management`
			`info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#designated-technical-writers`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`---`

			`# GitLab Pages Access Control`

			`> - [Introduced](https://gitlab.com/gitlab-org/gitlab-foss/issues/33422) in GitLab 11.5.`
			`> - Available on GitLab.com in GitLab 12.4.`

			`You can enable Pages access control on your project, so that only`
			`[members of your project](../../permissions.md#project-members-permissions)`
			`(at least Guest) can access your website:`

New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`<i class="fa fa-youtube-play youtube" aria-hidden="true"></i>`
			`For a demonstration, see [Pages access controls](https://www.youtube.com/watch?v=tSPAr5mQYc8).`

New upstream version 12.6.1 2020-01-01 13:55:28 +05:30			`1. Navigate to your project's Settings > General and expand Visibility, project features, permissions.`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`1. Toggle the Pages button to enable the access control.`

			`NOTE: Note:`
			`If you don't see the toggle button, that means that it's not enabled.`
			`Ask your administrator to [enable it](../../../administration/pages/index.md#access-control).`

			`1. The Pages access control dropdown allows you to set who can view pages hosted`
			`with GitLab Pages, depending on your project's visibility:`

			`- If your project is private:`
			`- Only project members: Only project members will be able to browse the website.`
			`- Everyone: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.`
			`- If your project is internal:`
			`- Only project members: Only project members will be able to browse the website.`
			`- Everyone with access: Everyone logged into GitLab will be able to browse the website, no matter their project membership.`
			`- Everyone: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.`
			`- If your project is public:`
			`- Only project members: Only project members will be able to browse the website.`
			`- Everyone with access: Everyone, both logged into and logged out of GitLab, will be able to browse the website, no matter their project membership.`

			`1. Click Save changes.`

			`The next time someone tries to access your website and the access control is`
			`enabled, they will be presented with a page to sign into GitLab and verify they`
			`can access the website.`

			`## Terminating a Pages session`

			`If you want to log out from your Pages website,`
			`you can do so by revoking application access token for GitLab Pages:`

			`1. Navigate to your profile's Settings > Applications.`
			`1. Find Authorized applications at the bottom of the page.`
			`1. Find GitLab Pages and press the Revoke button.`