Enterprise access for GitHub apps #753
Labels
all
Product SKU: All
enterprise administration
Feature: Enterprise server administration
ga
Feature phase: Generally available
identity
Feature: Github identity
Comments
github-product-roadmap
added
all
|
Please continue to refer to our updated Public Roadmap for the latest ships, including updates on the continuation of these projects. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
GitHub apps will be able to call APIs on the enterprise object, by being installed on an enterprise and granted new, fine-grained permissions that control access to the Enterprise. This allows administrators to deprecate the use of PATs (classic) and OAuth apps to manage their enterprises.
Intended Outcome
GitHub apps need to be able to operate at the Enterprise layer in order to best automate enterprise operations like managing settings, provisioning users, and reading the audit log. This update helps remove one of the last reasons developers and administrators are forced to use OAuth apps instead of the more secure and manageable GitHub app platform.
How will it work?
App developers will be able to specify Enterprises as a resource target, similar to how organizations and users are selected today. New fine-grained permissions (such as
enterprise_audit_log:read) will be created, which administrators can then grant to apps installed on their enterprise.The text was updated successfully, but these errors were encountered: