• Token Authentication

    defunkt 20 Sep 2008

    We’ve just added site-wide token based authentication. You can find your API token in your account page, front and center.

    Simply pass login and token to any URL which requires authentication.

    For example:

    We’ll be enhancing the API soon, but in the meantime you can use this to more easily build tools and automation around GitHub. Enjoy.

    • Comments

    EugZol Mon Sep 22 16:21:19 -0700 2008

    It seems to not work:

    eugzol@home-macbook:~$ curl -F ‘repository[name]=API_Hotness’ -F ‘login=defunkt’ -F ‘token=6ef8395fecf207165f1a82178ae1b984’ http://github.com/repositories You are being redirected.

    defunkt Mon Sep 22 17:33:00 -0700 2008

    @EugZol that’s my username and token, which I changed – you need to supply it with your own.

    martinisoft Mon Sep 22 23:36:21 -0700 2008

    Updated the awesome command-line gist I saw which made me ask for this feature. Thanks again for implementing this, I can’t wait to see the API enhancements.

    http://gist.github.com/12231

    drnic Tue Sep 23 02:48:40 -0700 2008

    @martinisoft – perhaps move the explicit TOKEN value into ENV[‘GITHUB_TOKEN’]

    jw-00000 Tue Sep 23 10:45:33 -0700 2008

    Is this token something like a password, that in combination with my username allows to make changes under my name? If so, you might want to mention that you need to keep it secret.

    martinisoft Tue Sep 23 20:52:57 -0700 2008

    @drnic – great suggestion, I want to refactor parts of that script, but I wanted to do a quick edit to support the API key stuff.

    One thing I did notice is that the API Token is a one-off thing and can’t be regenerated. Any plans to add in something to regenerate the token in case of security issues?

    defunkt Fri Oct 10 19:56:45 -0700 2008

    Please keep your token secret.

    Changing your password will change the token.

    danblick Sun Feb 15 13:47:48 -0800 2009

    I’d like to:

    curl -F “repository[name]=${PROJECT}” \ -F “login=${LOGIN}” \ -F “token=${TOKEN}” \ -F “repository[description]=” \ -F “repository[homepage]=” \ -F “repository[public]=true” \ -F “commit=Create Repository” \ https://github.com/repositories

    but this won’t work over HTTPS, only HTTP

    samueljaxon Mon Sep 21 06:22:29 -0700 2009

    Thanks for helpful guidelines on Token Authentication.
    Essay writing | writing term paper | writing research paper

    benhurtisson Mon Oct 05 02:11:14 -0700 2009

    Thanks for cool tips.
    Web design company

    McCain Tue Oct 06 02:42:10 -0700 2009

    A security device given to authorized users who keep them in their possession. To log in to the network, the security "card" or "token" may be read directly like a credit card, or it may display a changing number that is typed in as a password. The latter has also been implemented entirely in software. Tokens may also plug directly into the computer via a USB port.

    advantages of e marketing | apartment rent in Abu Dhabi | dubai rentals

    jauen3344 Mon Oct 12 03:23:50 -0700 2009

    A security device given to authorized users who keep them in their possession. To log in to the network, the security "card" or "token" may be read directly like a credit card, or it may display a changing number that is typed in as a password.Games

    JuliaAidan Tue Oct 13 03:26:23 -0700 2009

    Can the API be used to hack into your account if somebody accidentally made it public?
    Lemonade Diet

    tomfeinberg Tue Oct 13 05:52:48 -0700 2009

    I think that it really too long...
    C++ Help

    alice1 Sat Oct 17 02:10:19 -0700 2009

    I m to interested in knowing the purpose of API any info?
    custom logo design

    neil23 Fri Oct 23 10:58:26 -0700 2009

    Thanks for the api information. Just signed up and now I can also make use of this function. neil

    giveusawave Mon Oct 26 07:44:51 -0700 2009

    Really nifty feature, thanks

    sarafoster Sun Nov 01 04:54:35 -0800 2009

    You should keep your token secret by others ..
    Universities in Uk

    petersmith Mon Nov 02 11:47:59 -0800 2009

    I did not change my password or anything, but my token isn't working. I'm pretty sure that it didn't get stolen or anything... :s
    Forex Robot | Toronto Condos

    rickmarshel Mon Nov 02 21:22:27 -0800 2009

    Nice post, thanks for sharing it.
    Speech Presentation Assignment
    Statistics Project Assignment
    Bank Report Formats
    writing paper

    MelisaP Tue Nov 03 03:36:25 -0800 2009

    Great post! free games

    jamessamuelson Tue Nov 03 20:55:00 -0800 2009

    One thing I did notice is that the API Token is a one-off thing and can’t be regenerated. Any plans to add in something to regenerate the token in case of security issues?
    bariatric surgery - knee pain

    petersmith Wed Nov 04 11:57:53 -0800 2009

    I think I finally got a hold if it... It was tough in the beginning, but the hassle was worth it. Thanks!
    Buy to Let Mortgages | Free Proxy

    wyuguy Thu Nov 05 09:28:54 -0800 2009

    Great post really
    find the best high power led lighting bulbs

    hasan145303 Fri Nov 06 01:21:10 -0800 2009

    One thing I did notice is that the API Token is a one-off thing and can’t be regenerated. Any plans to add in something to regenerate the token in case of security issues? free online games

    Dunnie Fri Nov 06 13:38:59 -0800 2009

    The idea of the token is fantastic. That makes API even better. dofollow social bookmarking

    Please log in to comment.
rss

The GitHub Bloggers

Twitter counter