![]() ![]() For more information, see " Authorizing a personal access token for use with SAML single sign-on." Fine-grained personal access tokens are authorized during token creation, before access to the organization is granted. If you use a personal access token (classic) to access an organization that enforces SAML single sign-on (SSO) for authentication, you will need to authorize your token after creation. For general guidance about what scopes to choose, see " Scopes for OAuth apps." For more information about the permissions that are required for each endpoint, see " Permissions required for fine-grained personal access tokens." If you are using a personal access token (classic), your personal access token (classic) requires specific scopes in order to access each REST API endpoint. If you are using a fine-grained personal access token, your fine-grained personal access token requires specific permissions in order to access each REST API endpoint. ![]() For more information about creating a personal access token, see " Managing your personal access tokens." If possible, GitHub recommends that you use a fine-grained personal access token instead of a personal access token (classic). If you want to use the GitHub REST API for personal use, you can create a personal access token. For more information, see " Rate limits for the REST API." Authenticating with a personal access token Authenticating with invalid credentials will initially return a 401 Unauthorized response.Īfter detecting several requests with invalid credentials within a short period, the API will temporarily reject all authentication attempts for that user (including ones with valid credentials) with a 403 Forbidden response. If you try to use a REST API endpoint without a token or with a token that has insufficient permissions, you will receive a 404 Not Found or 403 Forbidden response. However, if you are passing a JSON web token (JWT), you must use Authorization: Bearer. Note: In most cases, you can use Authorization: Bearer or Authorization: token to pass a token. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |