github-authentication
Advanced tools
This gem allows you to authenticate with GitHub. Specifically, as a GitHub app.
The app works well with the ActiveSupport::Cache, uses retries to mitigate GitHub flakiness, and is thread safe
Add this line to your application's Gemfile:
gem 'github-authentication'
And then execute:
$ bundle
Or install it yourself as:
$ gem install github-authentication
require 'github-authentication'
cache = GithubAuthentication::Cache.new(storage: GithubAuthentication::ObjectCache.new)
generator = GithubAuthentication::Generator::App.new(pem: ENV['GITHUB_PEM'],
installation_id: ENV['GITHUB_INSTALLATION_ID'],
app_id: ENV['GITHUB_APP_ID'])
provider = GithubAuthentication::Provider.new(generator: generator, cache: cache)
provider.token
provider.reset_token
The cache takes a storage argument. You can pass an instance of an ActiveSupport::Cache implementation or use the provided
GithubAuthentication::ObjectCache if you are using it in a script.
Generates a token for a GitHub app.
GithubAuthentication::Generator::App.new(pem: ENV['GITHUB_PEM'],
installation_id: ENV['GITHUB_INSTALLATION_ID'],
app_id: ENV['GITHUB_APP_ID'])
Mostly for testing purposes you can provide a github token that gets retrieved.
GithubAuthentication::Generator::Personal.new(github_token: ENV['GITHUB_TOKEN'])
require "base64"
module GitHub
APP_ID = "<APP_ID>"
INSTALLATION_ID = "<INSTALLATION_ID>"
class << self
def token
@token_provider ||= begin
if ENV['GITHUB_TOKEN']
storage = GithubAuthentication::ObjectCache.new
generator = GithubAuthentication::Generator::Personal.new(github_token: ENV['GITHUB_TOKEN'])
else
storage = ActiveSupport::Cache::RedisCacheStore.new
pem = Base64.decode64(ENV['GITHUB_PEM'])
generator = GithubAuthentication::Generator::App.new(pem: pem, installation_id: INSTALLATION_ID,
app_id: APP_ID)
end
cache = GithubAuthentication::Cache.new(storage: storage)
GithubAuthentication::Provider.new(generator: generator, cache: cache)
end
@token_provider.token
end
def client
if ENV['GITHUB_TOKEN']
Octokit::Client.new(access_token: token.to_s)
else
Octokit::Client.new(bearer_token: token.to_s)
end
end
end
end
This gem also ships with a git credential helper to authenticate git operations as an App. See this doc for detail on setup and configuration.
After checking out the repo, run bin/setup to install dependencies. Then, run rake test to run the tests. You can also run bin/console for an interactive prompt that will allow you to experiment.
To install this gem onto your local machine, run bundle exec rake install. To release a new version, update the version number in version.rb, and then run bundle exec rake release, which will create a git tag for the version, push git commits and tags, and push the .gem file to rubygems.org.
Bug reports and pull requests are welcome on GitHub at https://github.com/Shopify/github-authentication.
The gem is available as open source under the terms of the MIT License.
FAQs
Unknown package
We found that github-authentication demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
The Socket Research Team has discovered six new malicious npm packages linked to North Korea’s Lazarus Group, designed to steal credentials and deploy backdoors.
Security News
Socket CEO Feross Aboukhadijeh discusses the open web, open source security, and how Socket tackles software supply chain attacks on The Pair Program podcast.
Security News
Opengrep continues building momentum with the alpha release of its Playground tool, demonstrating the project's rapid evolution just two months after its initial launch.