You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently access to private repositories are only possible using long-lived credentials like user credentials, tokens or private keys. For the cases I checked they are all linked to a specific user. The oauth2 credential flow would allow to use service accounts and short-lived credentials.
Motivation
Using service accounts and short-lived credentials would have an operational benefit (e.g., no personal access tokens revoked when the associated user leaves the company) and a security benefit (short-lived credentials, correct audit logging).
Proposal
Implement the oauth2 client credential flow.
The text was updated successfully, but these errors were encountered:
Summary
Currently access to private repositories are only possible using long-lived credentials like user credentials, tokens or private keys. For the cases I checked they are all linked to a specific user. The oauth2 credential flow would allow to use service accounts and short-lived credentials.
Motivation
Using service accounts and short-lived credentials would have an operational benefit (e.g., no personal access tokens revoked when the associated user leaves the company) and a security benefit (short-lived credentials, correct audit logging).
Proposal
Implement the oauth2 client credential flow.
The text was updated successfully, but these errors were encountered: