BlogSupportDocumentation
TigerTrust
Back to Integrations
CI/CD
Available

GitLab Integration

TigerTrust integrates with GitLab CI/CD for automated certificate management in your pipelines. Sign code, provision certificates, and automate deployments with secure certificate handling.

Key Features

CI/CD Pipeline
Container Registry
Protected Variables
Auto DevOps
Code Signing
Package Registry
Merge Request Integration

Benefits

Seamless GitLab CI/CD pipeline integration
Secure code signing for releases
Certificate provisioning in Auto DevOps
Protected variable support for secrets
Container image signing for registry

Common Use Cases

Signing release artifacts in GitLab CI/CD

Provisioning certificates during deployments

Automating SSL certificate renewal in pipelines

Securing container images with signatures

GitLab Integration with TigerTrust

TigerTrust provides native GitLab integration for certificate lifecycle management in your CI/CD pipelines.

GitLab CI/CD Configuration

Add TigerTrust to your .gitlab-ci.yml:

include:
  - component: tigertrust/certificate-[email protected]

variables:
  TIGERTRUST_API_KEY: $TIGERTRUST_API_KEY

stages:
  - build
  - sign
  - deploy

sign-artifacts:
  stage: sign
  script:
    - tigertrust sign --certificate code-signing-cert --files dist/*
  artifacts:
    paths:
      - dist/

provision-certificate:
  stage: deploy
  script:
    - tigertrust provision --domain $CI_ENVIRONMENT_SLUG.example.com
    - tigertrust deploy --target kubernetes

Container Registry Signing

Sign container images pushed to GitLab Container Registry:

sign-container:
  stage: sign
  image: docker:latest
  services:
    - docker:dind
  script:
    - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA .
    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
    - tigertrust cosign sign $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA

Protected Variables

Store certificates securely using GitLab protected variables:

  • API keys stored as masked variables
  • Certificate secrets as file variables
  • Environment-scoped credentials
  • Group-level shared secrets

Auto DevOps Integration

TigerTrust works with GitLab Auto DevOps:

  • Automatic certificate provisioning for review apps
  • Production certificate management
  • Let's Encrypt integration
  • Custom domain certificate handling

Merge Request Validation

Validate certificates in merge requests:

  • Certificate compliance checking
  • Expiration date validation
  • Policy enforcement before merge
  • Automated certificate testing

Automate your certificate lifecycle with GitLab and TigerTrust.

Getting Started

1

Add TigerTrust CI/CD component to your project

2

Configure protected variables for API access

3

Add certificate operations to .gitlab-ci.yml

4

Enable container signing for registry

5

Set up merge request certificate validation

Related Integrations

Jenkins

Automate certificate management in your Jenkins pipelines with our plugin. Sign artifacts and manage deployment certificates.

GitHub Actions

GitHub Actions integration for automated certificate operations in your workflows with code signing support.

CircleCI

Integrate certificate management into your CircleCI pipelines for secure builds and deployments.

Ready to Integrate GitLab?

Get started with TigerTrust and automate your certificate lifecycle management today.