npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

@c3exchange/github-app-token

v1.0.2

Published

Ask to an installed GitHub application for an access token

Downloads

3

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

javerettjaverettalex99yalex99ymxmauromxmauro

Keywords

Readme

GitHub-App-Token

A tool to request a new access token from an installed GitHub Application.

Prerequisites

Create a custom GitHub Application by going to your account or organization settings -> Developer Settings -> GitHub Apps and click on the New GitHub App button

  1. Enter the application name, homepage and other required basic information. Disable WebHooks if not needed.
  2. Configure the permissions this application will have and where can be installed.
  3. Take note of the generate Application ID.
  4. Once the application has been created install it on your organization or personal account. If you omit this step, you can install later by editing the application on the GitHub Apps settings page.

Generate a private key:

  1. Go back to your account or organization settings -> Developer Settings -> GitHub Apps and click on the Edit button of your newly created application.
  2. Scroll down in the General settings and look for the Generate a private key button.
  3. Save the newly private key in a SECURE location like a GitHub secret.

Usage

Make sure you have NodeJS installed as well as the latest version of the npm package.

Run npx [-y] @c3exchange/github-app-token@latest {parameters}

Where parameters can be:

| Parameter | Description | |---------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------| | --pk {private-key-file} | A file containing the generated RSA-256 private key. If private-key-file is equal to stdin, the script will read the private key from the standard input. | | --app-id {application-id} | Specifies the application ID. | | --inst-id {installation-id} | Specifies the installation ID. This parameter is optional. | | --org {organization-name} | Restricts the lookup of the installation ID to the given organization. | | --user {user-name} | Restricts the lookup of the installation ID to the given user. | | --perm {list-of-permissions} | A list of requested permissions separated by comma. See below for details. | | --scope {list-of-permissions} | Alias of --perm. | | --ua {user-agent} | An user agent to use in web requests. Defaults to: GitHubAppToken-Retriever/1.0. |

NOTE
  • Use -y flag on automated environments like deployment ones to avoid undesired prompts.

Permissions

Each permission consist in strings with the following format: access:type

Type can be: contents, packages, secrets, etc. See GitHub documentation for a complete list of access types.

access is optional and must be separated from the type with a : (colon). If specified, it must be read, write or admin. Defaults to read.

Some examples:

  • write:contents allows write access to repository contents.
  • packages allows read access to packages.
  • read:secrets allows read access to secrets in a GitHub action.

License

Apache 2.0