-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support Github App Refresh tokens #162
Comments
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
An implementation similar to what we do to support GitLab refresh tokens has been completed in #163 . In that process many opinions and possible issues were surfaced that need attention to. I hope we can use this ticket as a planning board and construct a plan to release Github App Refresh tokens with minimal (hopefully zero) performance and user experience impact. With GitLab we had the "benefit" that it was broken, so anything was better than nothing. This is definitely not the case here. Also there are way more customers in Github. So we need to be careful. I suppose we can rely heavily in staging to test the changes and collect data on the solution proposed until we are confident to release in prod. |
Yes I know, this should have been part of codecov.shared#27 I decided to come back and restrict the requests we will try to refresh a little. By checking the callable first we avoid app-to-server requests, which should represent a considerable portion of requests to github, in fact. So here's a rough list of requests that wi will NOT try to refresh: * check if user is a student * any request made by the codecov github app * any request made by a repo bot * requests for repo information made in `sync_repos` or `sync_teams` hopefully by restricting the attempts at refreshing info we avoid unecessary reqeusts to gh. context codecov/engineering-team#162
* Updates shared to a newer version * Adds a on_token_refresh callback if the torngit adapter comes from owner.py context codecov/engineering-team#162
* update shared * only include on_token_refresh if the token comes from the owner (definetely from the owner) context codecov/engineering-team#162
* update shared * only include on_token_refresh if the token comes from the owner (definetely from the owner) context codecov/engineering-team#162
Yes I know, this should have been part of codecov.shared#27 I decided to come back and restrict the requests we will try to refresh a little. By checking the callable first we avoid app-to-server requests, which should represent a considerable portion of requests to github, in fact. So here's a rough list of requests that wi will NOT try to refresh: * check if user is a student * any request made by the codecov github app * any request made by a repo bot * requests for repo information made in `sync_repos` or `sync_teams` hopefully by restricting the attempts at refreshing info we avoid unecessary reqeusts to gh. context codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
* update shared * only include on_token_refresh if the token comes from the owner (definetely from the owner) context codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
* Updates shared to a newer version * Adds a on_token_refresh callback if the torngit adapter comes from owner.py context codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
* Updates shared to a newer version * Adds a on_token_refresh callback if the torngit adapter comes from owner.py context codecov/engineering-team#162
Depends on codecov/shared#27 Adds support for github app refresh tokens context: codecov/engineering-team#162
Depends on codecov/shared#27 TODO: after that is merged update the sha reference in requirements.in Adds support for github app refresh tokens codecov/engineering-team#162
* update shared * only include on_token_refresh if the token comes from the owner (definetely from the owner) context codecov/engineering-team#162
KPIs
Tasks
The text was updated successfully, but these errors were encountered: