Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Minimal set of scopes to push to github using an access token

Tags:

git

github

push

I have a public github repo (I created a few years ago). I have two factor authentication enabled. I want to create a github API token to be able to push some changes to my repo.

What is the minimal set of scopes that I must select in the github "New personal access token" page to be able to push changes to this repo?

I want to avoid to give any rights that are unnecessary to the token.

like image 920
Fabian Avatar asked Sep 15 '20 16:09

Fabian

People also ask

How do I get a token for multiple scopes?

When requesting multiple scopes, the token is saved with a normalized list of scopes, discarding those that are implicitly included by another requested scope. For example, requesting user,gist,user:email will result in a token with user and gist scopes only since the access granted with user:email scope is included in the user scope.

How do I generate a personal access token for GitHub?

GitHub has personal access token (PAT), to use in place of a password with the command line or with the API. Below is how to generate the token and use it: Create a token in GitHub Log in to GitHub and navigate to the Settings page as shown below:

What is a GitHub API Token used for?

This token can also be used to access the Github API, but that isn’t necessary for most people’s usage. You can also switch to SSH based authentication, which works pretty similarly to access tokens, except they’re tied to your machine and not transmitted anywhere.

What is the difference between user and gist scopes when requesting user?

For example, requesting user,gist,user:email will result in a token with user and gist scopes only since the access granted with user:email scope is included in the user scope.

1 Answers

According to the GitHub documentation, the scope for public repositories is public_repo, and for private repositories is repo.

A token with one of those scopes is the most limited access possible for Git push or pull access; however, that token can access all public (respectively, private) repositories and can also be used for certain API access as well. If that's of concern to you, you can use an SSH key for your personal account, or to restrict it even further, a read-write deploy key for the repo in question.

like image 192
bk2204 Avatar answered Sep 19 '22 04:09

bk2204
Sign in to Comment

Related questions

How to create git patch from two files?
Show both tags and branches in Bitbucket under commits view
How do I track "dot" configuration files in my home directory with git?
git rebase -i origin master "fatal: Needed a single revision invalid upstream origin"
Fatal: bad numeric config value for 'core.sharedrepository' in .git/config : invalid unit (in Git Bash)
Pull requests across separate GitHub repositories that weren't forked from one another?
Cygwin ssh key added, but Git permission denied (publickey)
Git push resolving deltas "completed with local objects"
What's ignoring the gradle wrapper?
Rebasing after a Pull request
Duplicate builds triggered on Jenkins multibranch pipeline
How to get a list of pull requests between 2 commits
run specific command without sudo inside script running with sudo bash
How can I merge changes from a branch that contains a subset of directories from another?
Create a branch from an other branch without tracking it
How to check that all git-lfs tracked and committed files are pointers?
Git: How can I split a branch by file (not by commit)?
Best practice for updating Hugo academic theme installed with install_hugo()
How can I exclude files/folders from repo with Swift Package Manager?
ICloud Drive Desktop Sync vs. Git - deleted files reappear and duplicates with number suffixes

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!