Allow unauthenticated requests to GraphQL API

[SuspiciousLookingOwl]

It's currently possible to do an unauthenticated requests to GitHub's REST API with 60 requests / hour limit.

But AFAIK currently it's not possible to do an unauthenticated requests to the GraphQL API. Please make this possible! Even with lower rate limit like 30 points / hour.

[SuspiciousLookingOwl]

[waghanza]

How about being authenticated ?

[SuspiciousLookingOwl]

Unauthenticated requests allows developers to create a client app that sends a request to GitHub's GraphQL API without any backend server. While authenticated request requires the developer to create a backend server at least to authenticate between users and GitHub

[waghanza]

What I meant is : why not create some credentials ? (I don't know how to do this, but we might use github API for a while -> my long term idea is to have our backend based on https://hasura.io)

[gnprice]

This would be neat! I have a small script (for a maintainer pushing changes to a contributor's pull request) that sticks to the REST API for exactly this reason. Dealing with authentication would add quite a bit of complexity; and it's just getting a few bits of already-public information (it's all there in the web page for the PR), so fundamentally authentication shouldn't be needed.

[strugee]

See also isaacs/github#972

[vungochieu491999]

Thanks.

[ZuongZuong]

thanks

[gdamore]

I have an editor plugin which checks for new assets via the releases REST API. There is a ton of data transmitted, and I could really lighten the load by using graphql because I really only need a small fraction of the data transmitted. (On a side note, I'd use ETag conditional requests if I could, but the editor's fetch API seems to suppress the ETag header from me. :(

I don't want to add an authentication step just for making a query about the public releases data.

[domnantas]

This would be really nice. I'm building a little LED contribution display. I want users of this device to be able to simply enter their Github username and get their data shown, as it would be a bit annoying (and possibly insecure) to fiddle with API tokens. Especially for publicly available data.

Unfortunately, contribution data is unavailable using REST API, and GraphQL is much better for embedded devices.

[VladimirCreator]

That’s so unfair that GraphQL API requires authentication! 😭😭😭

[github-actions[bot]]

💬 Your Product Feedback Has Been Submitted 🎉

Thank you for taking the time to share your insights with us! Your feedback is invaluable as we build a better GitHub experience for all our users.

Here's what you can expect moving forward ⏩

• Your input will be carefully reviewed and cataloged by members of our product teams. 
  • Due to the high volume of submissions, we may not always be able to provide individual responses.
  • Rest assured, your feedback will help chart our course for product improvements.
• Other users may engage with your post, sharing their own perspectives or experiences. 
• GitHub staff may reach out for further clarification or insight. 
  • We may 'Answer' your discussion if there is a current solution, workaround, or roadmap/changelog post related to the feedback.

Where to look to see what's shipping 👀

• Read the Changelog for real-time updates on the latest GitHub features, enhancements, and calls for feedback.
• Explore our Product Roadmap, which details upcoming major releases and initiatives.

What you can do in the meantime 💻

• Upvote and comment on other user feedback Discussions that resonate with you.
• Add more information at any point! Useful details include: use cases, relevant labels, desired outcomes, and any accompanying screenshots.

As a member of the GitHub community, your participation is essential. While we can't promise that every suggestion will be implemented, we want to emphasize that your feedback is instrumental in guiding our decisions and priorities.

Thank you once again for your contribution to making GitHub even better! We're grateful for your ongoing support and collaboration in shaping the future of our platform. ⭐