[JENKINS-27691] make Github OAuth Scopes configurable

Type: New Feature
Resolution: Fixed
Priority: Critical
Component/s: github-oauth-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show

The current default behavior is to request these scopes from GH:

repo,read:org

The repo scope is very broad and grants read/write permissions to public and private repos across all organizations to which the user is a member. This is a "deal breaker" for some of my end users and unnecessary since the relevant repos are all public. We need a mechanism to configure / reduce the requested scope(s).

is related to

JENKINS-23324 GitHub OAuth 0.17 requires private access to all repositories

Resolved

JENKINS-26145 Narrow down github auth scope for user logins

Resolved

JENKINS-20845 Private user memberships can't be used for authorization

Resolved

JENKINS-26789 Upcoming GitHub API changes

Resolved

Joshua Hoblitt added a comment - 2015-04-06 19:17

Note that I opened a PR to adding this functionality on github last week: https://github.com/jenkinsci/github-oauth-plugin/pull/35

Joshua Hoblitt added a comment - 2015-04-06 19:17 Note that I opened a PR to adding this functionality on github last week: https://github.com/jenkinsci/github-oauth-plugin/pull/35

Sam Gleske added a comment - 2015-07-12 04:38

Fixed in release 0.21.

Sam Gleske added a comment - 2015-07-12 04:38 Fixed in release 0.21.

Assignee:: Sam Gleske

Reporter:: Joshua Hoblitt

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2015-03-31 22:12

Updated:: 2015-07-13 14:45

Resolved:: 2015-07-12 04:39

Details

Description

Attachments

Issue Links

Activity

Collapse comment: Joshua Hoblitt added a comment - 2015-04-06 19:17

Expand comment: Joshua Hoblitt added a comment - 2015-04-06 19:17

Collapse comment: Sam Gleske added a comment - 2015-07-12 04:38

Expand comment: Sam Gleske added a comment - 2015-07-12 04:38

People

Dates