Zephyr Cloud Docs

    CI/CD Integration using Personal token

    Integrate Zephyr Cloud into your continuous integration and deployment pipelines to automate your deployment workflow. This guide covers setup for GitHub Actions and GitLab CI/CD.

    Alternative: Server Tokens

    Personal tokens authenticate as individual users. For organization-level authentication in CI/CD, consider using Server Tokens instead. Server tokens provide centralized management and don't require individual user credentials. See the CI/CD Server Token guide for details.

    Overview

    Generate an API Token

    To use Zephyr Cloud in CI/CD pipelines, you'll need an API token for authentication:

    Click on your avatar

    In the upper right you should see your user's avatar with a dropdown menu

    Select My Profile

    One of the options in this menu should be "My Profile"

    Select the settings tab

    Once on the profile page, select the settings tab from the tab options

    Select API Tokens from the left navigation

    On the left hand navigation there should be an option for "API Token" - select this option

    Click Generate Token Button

    Fill out the required information about the token you're about to generate

    token screen

    Click Generate

    Copy the token for usage where you need to use it

    GitHub Actions

    Zephyr requires an authenticated user to publish updates. Configure your GitHub Actions pipeline to build and deploy with Zephyr by adding a token to your repository secrets.

    Adding the GitHub Secret

    1. Create a token on your API token page
    2. Add it as a repository secret in GitHub
    3. The secret must be assigned to the ZE_SECRET_TOKEN environment variable
    pull_request.yml
    env:
  ZE_SECRET_TOKEN: ${{ secrets.ZEPHYR_AUTH_TOKEN }}

    Authentication Behavior

    When the Zephyr plugin detects the ZE_SECRET_TOKEN environment variable, it will automatically authenticate with the Zephyr API, bypassing the usual login step.

    You'll see this confirmation in the console:

     ZEPHYR   Token found in environment. Using secret token for authentication

    GitLab CI/CD

    Configure your GitLab Runner pipeline to build and deploy with Zephyr by adding a token to the CI/CD variables.

    Adding the GitLab CI/CD Variable

    1. Create a full access token on your API token page
    2. Add it as a CI/CD variable in your GitLab project:

    Steps to add the token:

    1. Navigate to your GitLab project
    2. Go to SettingsCI/CD
    3. Expand the Variables section
    4. Click Add variable
    5. Configure the variable:
      • Key: ZE_SECRET_TOKEN
      • Value: Your Zephyr API token
      • Type: Variable
      • Environment scope: All (or specify specific environments)
      • Protect variable: ✅ Check if you want to use it only in protected branches
      • Mask variable: ✅ Check to hide the value in job logs

    Using the Token in GitLab CI/CD

    In your .gitlab-ci.yml file, the token will be automatically available as an environment variable:

    .gitlab-ci.yml
    build:
  stage: build
  script:
    - npm install
    - npm run build
  variables:
    ZE_SECRET_TOKEN: $ZE_SECRET_TOKEN

    For more explicit control, you can also reference it directly:

    .gitlab-ci.yml
    deploy:
  stage: deploy
  script:
    - npm install
    - npm run build
  environment:
    name: production
  variables:
    ZE_SECRET_TOKEN: $ZE_SECRET_TOKEN

    Authentication Behavior

    When the Zephyr plugin detects the ZE_SECRET_TOKEN environment variable, it will automatically authenticate with the Zephyr API, bypassing the usual login step.

    You'll see this confirmation in the console:

     ZEPHYR   Token found in environment. Using secret token for authentication

    Complete Pipeline Example

    Here's a full GitLab CI/CD pipeline configured for Zephyr deployment:

    .gitlab-ci.yml
    stages:
  - install
  - build
  - deploy

variables:
  npm_config_cache: '$CI_PROJECT_DIR/.npm'

cache:
  key: ${CI_COMMIT_REF_SLUG}
  paths:
    - .npm/
    - node_modules/

install:
  stage: install
  script:
    - npm ci --cache .npm --prefer-offline
  artifacts:
    paths:
      - node_modules/
    expire_in: 1 hour

build:
  stage: build
  script:
    - npm run build
  artifacts:
    paths:
      - dist/
    expire_in: 1 day
  variables:
    ZE_SECRET_TOKEN: $ZE_SECRET_TOKEN

deploy:
  stage: deploy
  script:
    - npm run deploy
  only:
    - main
  environment:
    name: production
  variables:
    ZE_SECRET_TOKEN: $ZE_SECRET_TOKEN

    Troubleshooting

    Authentication Issues

    Token not found error:

    • Verify the variable name is exactly ZE_SECRET_TOKEN
    • Ensure the variable is available in the environment where your job runs
    • Check that the token hasn't expired

    GitLab-Specific Issues

    Protected variables:

    • If using protected variables, ensure your pipeline runs on a protected branch or tag

    Masked variables:

    • Masked variables won't appear in job logs (recommended for security)
    • Temporarily unmask if you need to troubleshoot, then re-mask for production

    Variable scope:

    • Check that the variable scope matches your pipeline's environment requirements

    CI/CD & Deployment:

    Getting Started: