Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

[release-monitoring] Narrow GitHub scopes

Browse source 
We don't need anything else than e-mail and username to login user.
Let's narrow the scopes for GitHub to only user:email.

Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This commit is contained in:
Michal Konecny 2025-01-16 14:33:00 +01:00
parent 0716233b7a
commit 809f6c45fd
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
roles/openshift-apps/release-monitoring/templates/anitya.toml
View file

@ -60,7 +60,7 @@ github_authorize_url = "https://github.com/login/oauth/authorize"
# Github URL for API # Github URL for API
github_api_base_url = "https://api.github.com/" github_api_base_url = "https://api.github.com/"
# Additional arguments for Github authentication # Additional arguments for Github authentication
github_client_kwargs = { scope = "user" } github_client_kwargs = { scope = "user:email" }
# Fedora OAuth backend variables # Fedora OAuth backend variables
# Fedora OAuth client id # Fedora OAuth client id
@ -103,7 +103,7 @@ github_authorize_url = "https://github.com/login/oauth/authorize"
# Github URL for API # Github URL for API
github_api_base_url = "https://api.github.com/" github_api_base_url = "https://api.github.com/"
# Additional arguments for Github authentication # Additional arguments for Github authentication
github_client_kwargs = { scope = "user" } github_client_kwargs = { scope = "user:email" }
# Fedora OAuth backend variables # Fedora OAuth backend variables
# Fedora OAuth client id # Fedora OAuth client id