Cli admin create user --access-token option should also require a --scopes option #24819
Labels
type/enhancement
An improvement of existing functionality
type/proposal
The new feature has not been accepted yet but needs to be discussed first.
Comments
akarasulu
added
type/feature
|
That strongly depends on #24767 first… |
From a DevOps point of view, the token created with an admin user (via CLI) should have all scopes automatically set when creating the token, including the ability to delete this "all-powers" token after the automated configuration completes. |
lunny
added
type/enhancement
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Feature Description
The token created via
gitea admin create user --access-tokenis effectively useless without providing some minimal scope options. The generated scopeless access token, as expected, always results in a 403 with "token does not have required scope" messages via REST API. There's no way to change the scope afterward either.Without the ability to provide scopes the --access-token features is completely useless.
Screenshots
This shows the current token scopes (none) as the feature stands without having the option to specify scopes. Another option is from my comment below where all powers are granted to the access token generated for admins from the CLI.
The text was updated successfully, but these errors were encountered: