Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Use access tokens rather than id/secret

See original GitHub issue

https://developer.github.com/enterprise/2.13/v3/#oauth2-token-sent-as-a-parameter

In trying to get this extention working with GHE (#34) access tokens appear to work when making api requests whereas the client_id/client-secret returns an unauthorized error:

{
  "message": "Must authenticate to access this API.",
  "documentation_url": "https://developer.github.com/enterprise/2.11/v3"
}

Issue Analytics

State:
Created 5 years ago
Comments:13 (13 by maintainers)

Top GitHub Comments

1reaction

dhirschfeldcommented, Jul 24, 2019

If you are using a different authenticator, you don’t get a GitHub token for free.

We’re using LDAP so that wouldn’t work for us, nevertheless I think that will be very convenient for a large number of potential users.

GitHub does not have very granular permissions there.

Yeah, GitHub permissions have always been a bit of an issue. I’m hopeful Microsoft might improve the situation there now that they’re in charge but I don’t even know if it’s on their radar.

0reactions

ian-r-rosecommented, Jul 24, 2019

Yeah, GitHub permissions have always been a bit of an issue. I’m hopeful Microsoft might improve the situation there now that they’re in charge but I don’t even know if it’s on their radar.

Yeah, there is a very long-standing and popular issue for this: https://github.com/dear-github/dear-github/issues/113

Top Results From Across the Web

The Client ID and Secret - OAuth 2.0 Simplified

The client_secret is a secret known only to the application and the authorization server. It is essential the application's own password. It ...

ID Token and Access Token: What Is the Difference? - Auth0

Learn what ID and access tokens are and how to correctly use them in the OpenID Connect and OAuth context.

How to create GitHub Personal Access Token without client ID ...

Is there a way of generating a personal access token for GitHub using a username and password only? I'm trying to carry out...

Getting data with OAuth

An example of using OAuth2.0 to access an API using Python's ... to make after that will require we get a new token...

Authentication - Marketo Developers

The Identity URL is found in the Admin > Web Services menu in the REST API section. doc-rest-api-admin-web-services-identity-url. Create an access token using...