Book a Demo →

Linked Accounts

Linked accounts connect your external identity provider accounts (GitHub, GitLab, Google, and others) to your Oplane user. They enable login, repository access, PR/MR reviews, and workflow integrations.

Supported Providers

ProviderWhat It Enables
GitHubSign in to Oplane, list accessible repositories, enable automated PR threat model reviews, and post review comments.
GitLabBrowse GitLab projects, verify repository access, and enable automated MR threat model reviews.
GoogleSign in to Oplane with your Google account.
Azure ADEnterprise SSO sign-in for organisations using Azure Active Directory.
Atlassian (Jira)Create Jira issues automatically from security requirements via workflow actions.

Managing Your Linked Accounts

You can view and manage your linked accounts from the organisation settings:

  1. Open the Organisation Settings page from the sidebar.
  2. Select the Git tab.
  3. Your linked GitHub and GitLab accounts are displayed with your username and a link to your profile. From here you can link new accounts or unlink existing ones.

Tip: Jira accounts are linked from the Workflows tab when configuring a workflow action that creates Jira issues.

What Happens When You Link

GitHub

Linking your GitHub account grants Oplane an OAuth token scoped to your accessible repositories. This allows Oplane to:

  • List repositories you have access to
  • Enable automated PR reviews on selected repositories
  • Post security requirements as review comments on your pull requests

You also need to install the Oplane GitHub App on your organisation or repositories to receive PR webhooks. See Connect GitHub for the full setup.

GitLab

Linking your GitLab account gives Oplane a user OAuth token to verify your project access and browse available repositories. Automated MR reviews use a separate bot token configured at the organisation level. See Connect GitLab for details.

Google & Azure AD

These are login-only providers. Linking them allows you to sign in to Oplane using that identity. No additional permissions or integrations are enabled beyond authentication.

Atlassian (Jira)

Linking your Atlassian account connects Oplane to your Jira instance via OAuth. This enables workflow actions that automatically create Jira issues from security requirements — useful for tracking remediation work in your existing project management tools.

What Happens When You Unlink

Unlinking a provider revokes Oplane's access to that service:

  • GitHub — All automated PR review subscriptions tied to your account are deactivated. Reviews will stop until you re-link.
  • GitLab — Repository access verification using your account is disabled. Bot-level automation may continue if a separate bot token is configured.
  • Login providers — You can no longer sign in with that provider. Make sure you have at least one other linked login method.

Important: Each external account can only be linked to one Oplane user. If you need to transfer a link, unlink it from the current user first.

Your Account Page

Your personal profile is accessible from the user menu in the top right. Click your avatar and select Profile to reach the account page, where you can:

  • Edit your display name and profile information
  • Set up MCP agent connections (see MCP)
  • Manage personal access tokens for API and CLI usage