Skip to content

Home

Jump to bottom Edit New page
Bhupendra edited this page May 23, 2018 · 3 revisions

Github OAuth authorization plugin for GoCD

Welcome to the Github-OAuth-authorization-plugin wiki!

Build Status

Requirements

  • GoCD server version v17.5.0 or above
  • GitHub OAuth application's ClientId and ClientSectret
  • GitHub personal access token to access private organizations and teams

Installation

Copy the file build/libs/github-authorization-plugin-VERSION.jar to the GoCD server under ${GO_SERVER_DIR}/plugins/external and restart the server. The GO_SERVER_DIR is usually /var/lib/go-server on Linux and C:\Program Files\Go Server on Windows.

Configuration

Create GitHub OAuth application

  1. Login to your GitHub account
  2. Navigate to Developer applications
  3. Click Register a new application.
  4. In "Application name", type the name of your app.
  5. In "Authorization callback URL", type https://your.goserver.url/go/plugin/cd.go.authorization.github/authenticate
  6. Click Register application.
  7. Note down the Client ID and Client Secret of your application.

Create GitHub personal access token

  1. Verify your email address, if it hasn't been verified yet.

  2. Navigate to Personal access tokens.

  3. Click Generate new token.

  4. Give a name to your token.

  5. In scope, select following values:

    • read:org to read org and team membership
    • read:user to read all user profile data
    • user:email to access user email addresses (read-only)

  6. Click Generate token.

  7. Copy the generated token and save it.

    Note: After you navigate off the page, the token will not be visible due to security reasons.

Create Authorization Configuration

  1. Log in to GoCD server as admin and navigate to Admin > Security > Authorization Configuration
  2. Click on Add to create new authorization configuration
    1. Specify id for auth config
    2. Select GitHub authorization plugin for GoCD for Plugin id
    3. Choose GitHub or GitHub Enterprise for Authenticate with.
    4. Specify Client ID and Client Secret
    5. Specify Personal access token
    6. Save your configuration

Create Role Configuration

  1. Log in to GoCD server as admin and navigate to Admin > Security > Role Configuration
  2. Click on Add to create new role configuration
    1. Specify name for your role
    2. Select Auth Config Id of previously created authorization configuration
    3. Specify GitHub organization's name for GitHub organizations
      • If a user is a member of at least one organization specified here, then the plugin will assign this role to the user
      • Must be provided as comma-separated values
    4. Specify GitHub Teams name for GitHub teams
      • If a user is a member of at least one of the organization team, then the plugin will assign this role to the user
      • Must be provided in OrganizationName: TeamA, TeamB ... TeamN format
    5. Specify username of GitHub users for GitHub users
      • If user's username is listed here, then the plugin will assign this role to the user
      • Must be provided as comma-separated values
Add a custom footer
Add a custom sidebar

Clone this wiki locally