Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/electron/github-app-auth

Gets an auth token for a repo via a GitHub app installation
https://github.com/electron/github-app-auth

Last synced: 11 months ago
JSON representation

Gets an auth token for a repo via a GitHub app installation

Awesome Lists containing this project

README 

          
# @electron/github-app-auth



> Gets an auth token for a repo via a GitHub app installation



[![Test](https://github.com/electron/github-app-auth/actions/workflows/test.yml/badge.svg)](https://github.com/electron/github-app-auth/actions/workflows/test.yml)

[![npm version](https://img.shields.io/npm/v/@electron/github-app-auth.svg)](https://npmjs.org/package/@electron/github-app-auth)



## Usage



### Generating Credentials



In order to simply credential management `@electron/github-app-auth` contains

a CLI tool to generate a "credential bundle" that contains the requisite

information to generate tokens.  You need both a private key for your

application and the application ID.



* You can find your app's ID on the settings page for your GitHub App.

* To download your app's private key, see [Managing private keys for GitHub Apps](https://docs.github.com/en/apps/creating-github-apps/authenticating-with-a-github-app/managing-private-keys-for-github-apps).



```bash

npx @electron/github-app-auth --cert=my-private.key.pem --app-id=12345

```



This command will output a base64 encoded blob which you should store in your

services secret storage (normally accessed via an environment variable).  Below

we will use `MY_GITHUB_APP_CREDS` as the environment variable.



### With `@octokit/rest`



```typescript

import { appCredentialsFromString, getAuthOptionsForRepo } from '@electron/github-app-auth';

import { Octokit } from '@octokit/rest';



const creds = appCredentialsFromString(process.env.MY_GITHUB_APP_CREDS);

const authOpts = await getAuthOptionsForRepo({

  owner: 'electron',

  name: 'electron'

}, creds)

const octo = new Octokit({

  ...authOpts,

});



// octo is now a valid octokit instance

```



### With raw tokens



```typescript

import { appCredentialsFromString, getTokenForRepo } from '@electron/github-app-auth';

import { Octokit } from '@octokit/rest';



const creds = appCredentialsFromString(process.env.MY_GITHUB_APP_CREDS);

const token = await getTokenForRepo({

  owner: 'electron',

  name: 'electron'

}, creds)



// token is now a valid github auth token

```



#### With raw tokens on the CLI



```bash

gh_token=$(npx @electron/github-app-auth --creds=$MY_GITHUB_APP_CREDS --owner=electron --repo=electron)

```