fix(gitlab): add missing ssl_verify parameter for private_token auth (#2173)

heoyongun · web-flow · commit 1ac0e27d24b8 · 2026-01-30T21:05:11.000+02:00
When using private_token authentication (GITLAB.AUTH_TYPE = 'private_token'),
the ssl_verify setting was not being passed to the GitLab client constructor.

This caused SSL certificate verification to remain enabled even when
ssl_verify was explicitly set to false in the configuration, breaking
connections to self-hosted GitLab instances with self-signed certificates.

The oauth_token authentication path correctly includes ssl_verify, but the
private_token path was missing it. This commit adds the missing parameter
to ensure consistent behavior for both authentication methods.
diff --git a/pr_agent/git_providers/gitlab_provider.py b/pr_agent/git_providers/gitlab_provider.py
@@ -57,7 +57,8 @@ def __init__(self, merge_request_url: Optional[str] = None, incremental: Optiona
             else:  # private_token
                 self.gl = gitlab.Gitlab(
                     url=gitlab_url,
-                    private_token=gitlab_access_token
+                    private_token=gitlab_access_token,
+                    ssl_verify=ssl_verify
                 )
         except Exception as e:
             get_logger().error(f"Failed to create GitLab instance: {e}")
