Configuration/Authorization.md

+## Personal Access Token
+
+### Permissions
+
+A user should provide a Personal Access Token with the following permissions:
+
+- read_user
+- read_api
+- read_repository
+- write_repository
+
+### GraphQL API Authorization
+
+The GraphQL API has to be queried with the Personal Access Token set in the `Authorization` header as `Bearer`.
+
+### Repository Pull URL
+
+`git clone https://oauth2:${Personal Access Tokens}@gitlab.com/username/repo.git`
+
+### Secure Storage
+
+The token is stored in the OS secure storage using [node-keytar](https://github.com/atom/node-keytar)