Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for Org-level Service tokens rather than Personal API keys? #1

Open
kaelig opened this issue Jun 20, 2022 · 1 comment
Open

Support for Org-level Service tokens rather than Personal API keys? #1

kaelig opened this issue Jun 20, 2022 · 1 comment
Assignees
@limistah

Comments

@kaelig
Copy link
Contributor

kaelig commented Jun 20, 2022

When I was setting up this action, it didn't feel right to have to provide a personal API key.

Example use-case: if someone leaves an organization, this means all their API keys will stop working and CI breaks.

Would it be possible to use Org-level service tokens instead? (I'm not sure I'm getting the security implications, but that feels more resilient)
@limistah
Copy link
Contributor

@kaelig
This is a valid concern.

But, I think what should happen is the CI is expected to break.

What we could do is transfer their keys to another admin user.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@limistah limistah

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kaelig @limistah