Allow importing existing public keys into GitHub Apps #124567
Unanswered
joaopenteado
asked this question in
API and Webhooks
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Select Topic Area
Product Feedback
Body
Currently, it is only possible to request GitHub to generate a GitHub App private key for you and not import your existing public key into the system.
GitHub does not allow you to redownload a previously generated private key and already claims to store only the public key either way, so it makes no sense to not allow users to import their existing key. This already done with SSH keys and certificates, in which you can't actually request GitHub to generate a private key for you and must import your own.
Security benefits of allowing users to generate their own private keys include:
Additional considerations
Beta Was this translation helpful? Give feedback.
All reactions