You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When following the "Connect app..." workflow in the Amplify Console with a GitHub.com repository, it's clear that the Amplify Console requires more than just read only access to the user's GitHub account yet the Amplify console sets conflicting expectations and the workshop module's README.md does not set the degree of access expectations with the user so that the user can make a more informed decision.
This issue has also been filed in the aws-amplify organization on GitHub.com:
When selecting GitHub.com, the Amplify console states: "Amplify Console requires read-only access to your repository."
However, in the next step of the Amplify wizard, far more than just read only access to the user's repository is specified: "This application will be able to read and write all public and private repository data." i.e. the dialog implies that Amplify is requesting read and write access to all repositories, public and private, in the user's GitHub.com account.
Recommended Fixes
Given these inconsistencies in the Amplify UI, the workshop module's documentation should accurately set the user's expectation concerning the degree of access required so that the user can make an informed decision.
Many users should and will decline to allow such broad write access to their GitHub account.
Amplify's issues database should be reviewed to see if the inconsistent guidance is already filed as a bug. If it is not already filed, then a bug report should be filed.
The text was updated successfully, but these errors were encountered:
When following the "Connect app..." workflow in the Amplify Console with a GitHub.com repository, it's clear that the Amplify Console requires more than just read only access to the user's GitHub account yet the Amplify console sets conflicting expectations and the workshop module's README.md does not set the degree of access expectations with the user so that the user can make a more informed decision.
This issue has also been filed in the aws-amplify organization on GitHub.com:
aws-amplify/amplify-hosting#329
Background
Recommended Fixes
Many users should and will decline to allow such broad write access to their GitHub account.
The text was updated successfully, but these errors were encountered: