Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Improve API onboarding #2240
While trying to do this:
Use an API based client
I encountered this error:
I have to use the api key for the user - fine - however getting this is non-intuitive for regular folk, who will almost certainly expect standard username/password.
We should probably have a mechanism to exchange a username/password for a key... although this is in essence the same thing, so perhaps we should do away with the api key system altogether... see #831 (keys are basically passwords)
Some other notes:
Give us some context:
Oauth 2.0 is the answer here , for all user who want to authenticate with username and password can do so using the password grant type . I would definitely suggest using https://github.com/thephpleague/oauth2-server inside known core for getting up and running 2.0 server in no time .
Actually wrote a Known plugin that does this some time back, so it may be worth adopting that and cleaning off the bitrot.
@benwerd, what are your thoughts?