Github App and scopes (NOT OAuth apps)

[nichita-pasecinic]

Select Topic Area

Question

Body

Hi I've got a question on using Github App with tokens that have scope.

I'm using a Github App (with all permissions set) in order to generate an access token (with default expiration).
The response I'm receiving is something like so:

{
  access_token: 'ghu_asdf',
  expires_in: 28800,
  refresh_token: 'ghr_asdf',
  refresh_token_expires_in: 15724799,
  token_type: 'bearer',
  scope: ''
}

Note that the scope is empty, I have some third party integrations (e.g.: Vault) that requires a scope of read:org (docs)

Is there any possible workaround to generate an access token via a Github App that would have the scope field set ?

Thanks!

[anup-kodlekere]

Hey @nichita-pasecinic, I'm in need of something similar. Did you manage to find an answer for this?

[nichita-pasecinic]

@anup-kodlekere I believe there is not real way to achieve this via GithubApp, you'll need to use OAuth Flow for this https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/differences-between-github-apps-and-oauth-apps#requesting-permission-levels-for-resources

[queenofcorgis]

Thanks for posting in the GitHub Community, @nichita-pasecinic ! We're happy you're here. You are more likely to get a useful response if you are posting your question in the applicable category, the Discussions category is solely related to conversations around the GitHub product Discussions. I've gone ahead and moved it for you. Good luck!