debian-mirror-gitlab/doc/public_access/public_access.md

# Public access

GitLab allows [Owners](../user/permissions.md) to change a projects' visibility in order to be accessed
**publicly** or **internally**.

Projects with either of these visibility levels will be listed in the
public access directory (`/public` under your GitLab instance).
Here is the [GitLab.com example](https://gitlab.com/public).

Internal projects will only be available to authenticated users.

## Visibility of projects

### Public projects

Public projects can be cloned **without any** authentication.

They will also be listed on the public access directory (`/public`).

**Any logged in user** will have [Guest](../user/permissions.md)
permissions on the repository.

### Internal projects

Internal projects can be cloned by any logged in user.

They will also be listed on the public access directory (`/public`) for logged
in users.

Any logged in user will have [Guest](../user/permissions.md) permissions
on the repository.

### Private projects

Private projects can only be cloned and viewed by project members, and
they will only appear to project members on the public access directory
(`https://gitlab.example.com/public`).

### How to change project visibility

1. Go to your project's **Settings**
1. Change "Visibility Level" to either Public, Internal or Private

## Visibility of groups

>**Note:**
[Starting with][3323] GitLab 8.6, the group visibility has changed and can be
configured the same way as projects. In previous versions, a group's page was
always visible to all users.

Like with projects, the visibility of a group can be set to dictate whether
anonymous users, all signed in users, or only explicit group members can view
it. The restriction for visibility levels on the application setting level also
applies to groups, so if that's set to internal, the explore page will be empty
for anonymous users. The group page now has a visibility level icon.

[3323]: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3323

## Visibility of users

The public page of a user, located at `/username`, is always visible whether
you are logged in or not.

When visiting the public page of a user, you can only see the projects which
you are privileged to.

If the public level is restricted, user profiles are only visible to logged in users.

## Restricting the use of public or internal projects

In the Admin area under **Settings** (`/admin/application_settings`), you can
restrict the use of visibility levels for users when they create a project or a
snippet:

![Restrict visibility levels](img/restrict_visibility_levels.png)

This is useful to prevent people exposing their repositories to public
by accident. The restricted visibility settings do not apply to admin users.
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`# Public access`

New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`GitLab allows [Owners](../user/permissions.md) to change a projects' visibility in order to be accessed`
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`publicly or internally.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`Projects with either of these visibility levels will be listed in the`
			public access directory (`/public` under your GitLab instance).
			`Here is the [GitLab.com example](https://gitlab.com/public).`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`Internal projects will only be available to authenticated users.`

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`## Visibility of projects`

			`### Public projects`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`Public projects can be cloned without any authentication.`

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			They will also be listed on the public access directory (`/public`).
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30			`Any logged in user will have [Guest](../user/permissions.md)`
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`permissions on the repository.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`### Internal projects`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`Internal projects can be cloned by any logged in user.`

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			They will also be listed on the public access directory (`/public`) for logged
			`in users.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30			`Any logged in user will have [Guest](../user/permissions.md) permissions`
			`on the repository.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`### Private projects`

			`Private projects can only be cloned and viewed by project members, and`
			`they will only appear to project members on the public access directory`
			(`https://gitlab.example.com/public`).

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`### How to change project visibility`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`1. Go to your project's Settings`
			`1. Change "Visibility Level" to either Public, Internal or Private`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`## Visibility of groups`

			`>Note:`
			`[Starting with][3323] GitLab 8.6, the group visibility has changed and can be`
			`configured the same way as projects. In previous versions, a group's page was`
			`always visible to all users.`

			`Like with projects, the visibility of a group can be set to dictate whether`
			`anonymous users, all signed in users, or only explicit group members can view`
			`it. The restriction for visibility levels on the application setting level also`
			`applies to groups, so if that's set to internal, the explore page will be empty`
			`for anonymous users. The group page now has a visibility level icon.`

			`[3323]: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3323`

Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`## Visibility of users`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			The public page of a user, located at `/username`, is always visible whether
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`you are logged in or not.`

			`When visiting the public page of a user, you can only see the projects which`
			`you are privileged to.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`If the public level is restricted, user profiles are only visible to logged in users.`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`## Restricting the use of public or internal projects`

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			In the Admin area under Settings (`/admin/application_settings`), you can
			`restrict the use of visibility levels for users when they create a project or a`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`snippet:`

			`![Restrict visibility levels](img/restrict_visibility_levels.png)`

			`This is useful to prevent people exposing their repositories to public`
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`by accident. The restricted visibility settings do not apply to admin users.`