Acerca de los permisos de las GitHub App
Las GitHub Apps se crean un con conjunto de permisos. Los permisos definen a qué recursos puede acceder la GitHub App a través de la API. Para más información, consulta Elección de permisos para una aplicación de GitHub.
Para ayudarle a elegir los permisos correctos, recibirá el encabezado X-Accepted-GitHub-Permissions
en la respuesta de la API de REST. El encabezado le indicará qué permisos son necesarios para acceder al punto de conexión. Para obtener más información, vea «Solución de problemas de API de REST».
Estos permisos son necesarios para acceder a los recursos privados. Algunos puntos de conexión también se pueden usar para acceder a los recursos públicos sin estos permisos. Para ver si un punto de conexión puede acceder a recursos públicos sin un permiso, consulte la documentación de ese punto de conexión.
Algunos puntos de conexión requieren más de un permiso. Otros puntos de conexión funcionan con cualquier permiso de un conjunto de permisos. En estos casos, la columna "Permisos adicionales" incluirá una marca de verificación. Para más información sobre los permisos necesarios para usar el punto de conexión, consulte la documentación de ese punto de conexión.
Organization permissions for "Administration"
Organization permissions for "Custom repository roles"
Organization permissions for "Events"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /users/{username}/events/orgs/{org} | read | UAT |
Organization permissions for "Members"
Organization permissions for "Organization announcement banners"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /orgs/{org}/announcement | write | UAT IAT | |
DELETE /orgs/{org}/announcement | write | UAT IAT | |
GET /orgs/{org}/announcement | read | UAT IAT |
Organization permissions for "Organization dependabot secrets"
Organization permissions for "Personal access token requests"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/personal-access-token-requests | write | UAT IAT | |
POST /orgs/{org}/personal-access-token-requests/{pat_request_id} | write | UAT IAT | |
GET /orgs/{org}/personal-access-token-requests | read | UAT IAT | |
GET /orgs/{org}/personal-access-token-requests/{pat_request_id}/repositories | read | UAT IAT |
Organization permissions for "Personal access tokens"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/personal-access-tokens | write | UAT IAT | |
POST /orgs/{org}/personal-access-tokens/{pat_id} | write | UAT IAT | |
GET /orgs/{org}/personal-access-tokens | read | UAT IAT | |
GET /orgs/{org}/personal-access-tokens/{pat_id}/repositories | read | UAT IAT |
Organization permissions for "Pre-receive hooks"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /orgs/{org}/pre-receive-hooks/{pre_receive_hook_id} | write | UAT IAT | |
DELETE /orgs/{org}/pre-receive-hooks/{pre_receive_hook_id} | write | UAT IAT | |
GET /orgs/{org}/pre-receive-hooks | read | UAT IAT | |
GET /orgs/{org}/pre-receive-hooks/{pre_receive_hook_id} | read | UAT IAT |
Organization permissions for "Projects"
Organization permissions for "Secrets"
Organization permissions for "Self-hosted runners"
Organization permissions for "Team discussions"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/comments/{comment_number}/reactions/{reaction_id} | write | UAT IAT | |
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/reactions/{reaction_id} | write | UAT IAT |
Organization permissions for "Variables"
Organization permissions for "Webhooks"
Repository permissions for "Actions"
Repository permissions for "Administration"
Repository permissions for "Checks"
Repository permissions for "Code scanning alerts"
Repository permissions for "Commit statuses"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /repos/{owner}/{repo}/statuses/{sha} | write | UAT IAT | |
GET /repos/{owner}/{repo}/commits/{ref}/status | read | UAT IAT | |
GET /repos/{owner}/{repo}/commits/{ref}/statuses | read | UAT IAT |
Repository permissions for "Contents"
Repository permissions for "Dependabot alerts"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | write | UAT IAT | |
GET /orgs/{org}/dependabot/alerts | read | UAT IAT | |
GET /repos/{owner}/{repo}/dependabot/alerts | read | UAT IAT | |
GET /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | read | UAT IAT |
Repository permissions for "Dependabot secrets"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | |
GET /repos/{owner}/{repo}/dependabot/secrets | read | UAT IAT | |
GET /repos/{owner}/{repo}/dependabot/secrets/public-key | read | UAT IAT | |
GET /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | read | UAT IAT |
Repository permissions for "Deployments"
Repository permissions for "Environments"
Repository permissions for "Issues"
Repository permissions for "Metadata"
Repository permissions for "Pages"
Repository permissions for "Pre-receive hooks"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /repos/{owner}/{repo}/pre-receive-hooks/{pre_receive_hook_id} | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/pre-receive-hooks/{pre_receive_hook_id} | write | UAT IAT | |
GET /repos/{owner}/{repo}/pre-receive-hooks | read | UAT IAT | |
GET /repos/{owner}/{repo}/pre-receive-hooks/{pre_receive_hook_id} | read | UAT IAT |
Repository permissions for "Projects"
Repository permissions for "Pull requests"
Repository permissions for "Secret scanning alerts"
Repository permissions for "Secrets"
Repository permissions for "Variables"
Repository permissions for "Webhooks"
Repository permissions for "Workflows"
User permissions for "Email addresses"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/emails | write | UAT | |
DELETE /user/emails | write | UAT | |
GET /user/emails | read | UAT | |
GET /user/public_emails | read | UAT |
User permissions for "Followers"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /user/following/{username} | write | UAT | |
DELETE /user/following/{username} | write | UAT | |
GET /user/followers | read | UAT | |
GET /user/following | read | UAT | |
GET /user/following/{username} | read | UAT |
User permissions for "GPG keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/gpg_keys | write | UAT | |
DELETE /user/gpg_keys/{gpg_key_id} | write | UAT | |
GET /user/gpg_keys | read | UAT | |
GET /user/gpg_keys/{gpg_key_id} | read | UAT |
User permissions for "Gists"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /gists | write | UAT | |
PATCH /gists/{gist_id} | write | UAT | |
DELETE /gists/{gist_id} | write | UAT | |
POST /gists/{gist_id}/comments | write | UAT | |
PATCH /gists/{gist_id}/comments/{comment_id} | write | UAT | |
DELETE /gists/{gist_id}/comments/{comment_id} | write | UAT | |
POST /gists/{gist_id}/forks | write | UAT | |
PUT /gists/{gist_id}/star | write | UAT | |
DELETE /gists/{gist_id}/star | write | UAT |
User permissions for "Git SSH keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/keys | write | UAT | |
DELETE /user/keys/{key_id} | write | UAT | |
GET /user/keys | read | UAT | |
GET /user/keys/{key_id} | read | UAT | |
GET /users/{username}/keys | read | UAT IAT |
User permissions for "Notifications"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /notifications | read | UAT | Se requieren varios permisos o se puede usar otro permiso. Para obtener más información sobre los permisos, consulte la documentación de este punto de conexión. |
User permissions for "Profile"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /user | write | UAT | |
POST /user/social_accounts | write | UAT | |
DELETE /user/social_accounts | write | UAT |
User permissions for "SSH signing keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/ssh_signing_keys | write | UAT | |
DELETE /user/ssh_signing_keys/{ssh_signing_key_id} | write | UAT | |
GET /user/ssh_signing_keys | read | UAT | |
GET /user/ssh_signing_keys/{ssh_signing_key_id} | read | UAT |
User permissions for "Starring"
User permissions for "Watching"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /user/subscriptions | read | UAT | |
GET /users/{username}/subscriptions | read | UAT IAT |