Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-64870

Enhance GitHupAppCredentials to use JWTToken instead AppInstallation Token

      Currently GitHubAppCredentials is generating JWT token from the AppInstallationToken, I think only in few exceptional cases AppInstallationToken is needed.

      We need to convert the logic to use the JWT token itself to support it across multiple organizations. 

      Given there are no issues with this implementation, this could solve other issues like JENKINS-64662 and JENKINS-62220

      JWT Token vs App Installation Token
      https://github-api.kohsuke.org/githubappjwtauth.html
      https://github-api.kohsuke.org/githubappappinsttokenauth.html

      https://github.com/jenkinsci/github-branch-source-plugin/blob/master/src/main/java/org/jenkinsci/plugins/github_branch_source/GitHubAppCredentials.java#L178-L198

          [JENKINS-64870] Enhance GitHupAppCredentials to use JWTToken instead AppInstallation Token

          Nvm, I got this wrong, we need to get app before we actually create access token, jwt are only meant to authenticate app and then from app installation token we get the actual access token. Closing.

          Naresh Rayapati added a comment - Nvm, I got this wrong, we need to get app before we actually create access token, jwt are only meant to authenticate app and then from app installation token we get the actual access token. Closing.

            Unassigned Unassigned
            nrayapati Naresh Rayapati
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: