Acerca de los permisos de las GitHub App
Las GitHub Apps se crean un con conjunto de permisos. Los permisos definen a qué recursos puede acceder la GitHub App a través de la API. Para obtener más información, vea «Elección de permisos para una aplicación de GitHub».
Para ayudarle a elegir los permisos correctos, recibirá el encabezado X-Accepted-GitHub-Permissions
en la respuesta de la API de REST. El encabezado le indicará qué permisos son necesarios para acceder al punto de conexión. Para obtener más información, vea «Solución de problemas».
Algunos puntos de conexión requieren permisos adicionales. Cuando este es el caso, la columna "Permisos adicionales" indicará los demás permisos necesarios para usar el punto de conexión.
Organization permissions for "Administration"
Organization permissions for "Blocking users"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /orgs/{org}/blocks/{username} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/blocks/{username} | write | UAT IAT | ✖️ |
GET /orgs/{org}/blocks | read | UAT IAT | ✖️ |
GET /orgs/{org}/blocks/{username} | read | UAT IAT | ✖️ |
Organization permissions for "Events"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /users/{username}/events/orgs/{org} | read | UAT | ✖️ |
Organization permissions for "GitHub Copilot for Business"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /orgs/{org}/copilot/billing | write | UAT IAT | ✖️ |
GET /orgs/{org}/copilot/billing/seats | write | UAT IAT | ✖️ |
POST /orgs/{org}/copilot/billing/selected_teams | write | UAT IAT | ✖️ |
Organization permissions for "Members"
Organization permissions for "Organization codespaces secrets"
Organization permissions for "Organization codespaces settings"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /orgs/{org}/codespaces/access | write | UAT IAT | ✖️ |
POST /orgs/{org}/codespaces/access/selected_users | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/codespaces/access/selected_users | write | UAT IAT | ✖️ |
Organization permissions for "Organization codespaces"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
DELETE /orgs/{org}/members/{username}/codespaces/{codespace_name} | write | UAT IAT | |
POST /orgs/{org}/members/{username}/codespaces/{codespace_name}/stop | write | UAT IAT | |
GET /orgs/{org}/codespaces | read | UAT IAT | |
GET /orgs/{org}/members/{username}/codespaces | read | UAT IAT |
Organization permissions for "Organization dependabot secrets"
Organization permissions for "Personal access token requests"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/personal-access-token-requests | write | UAT IAT | ✖️ |
POST /orgs/{org}/personal-access-token-requests/{pat_request_id} | write | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-token-requests | read | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-token-requests/{pat_request_id}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Personal access tokens"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/personal-access-tokens | write | UAT IAT | ✖️ |
POST /orgs/{org}/personal-access-tokens/{pat_id} | write | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-tokens | read | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-tokens/{pat_id}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Projects"
Organization permissions for "Secrets"
Organization permissions for "Self-hosted runners"
Organization permissions for "Team discussions"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/comments/{comment_number}/reactions/{reaction_id} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/reactions/{reaction_id} | write | UAT IAT | ✖️ |
Organization permissions for "Variables"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/actions/variables | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/actions/variables/{name} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/actions/variables/{name} | write | UAT IAT | ✖️ |
PUT /orgs/{org}/actions/variables/{name}/repositories | write | UAT IAT | ✖️ |
PUT /orgs/{org}/actions/variables/{name}/repositories/{repository_id} | write | UAT IAT | |
GET /orgs/{org}/actions/variables | read | UAT IAT | ✖️ |
GET /orgs/{org}/actions/variables/{name} | read | UAT IAT | ✖️ |
GET /orgs/{org}/actions/variables/{name}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Webhooks"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/hooks | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/hooks/{hook_id} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/hooks/{hook_id} | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/hooks/{hook_id}/config | write | UAT IAT | ✖️ |
POST /orgs/{org}/hooks/{hook_id}/deliveries/{delivery_id}/attempts | write | UAT IAT | ✖️ |
POST /orgs/{org}/hooks/{hook_id}/pings | write | UAT IAT | ✖️ |
GET /orgs/{org}/hooks | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id} | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/config | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/deliveries | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/deliveries/{delivery_id} | read | UAT IAT | ✖️ |
Repository permissions for "Actions"
Repository permissions for "Administration"
Repository permissions for "Checks"
Repository permissions for "Code scanning alerts"
Repository permissions for "Codespaces lifecycle admin"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /orgs/{org}/members/{username}/codespaces/{codespace_name}/stop | write | UAT IAT | |
POST /user/codespaces/{codespace_name}/exports | write | UAT | ✖️ |
POST /user/codespaces/{codespace_name}/start | write | UAT | ✖️ |
POST /user/codespaces/{codespace_name}/stop | write | UAT | ✖️ |
GET /user/codespaces/{codespace_name}/exports/{export_id} | read | UAT | ✖️ |
Repository permissions for "Codespaces metadata"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /repos/{owner}/{repo}/codespaces/devcontainers | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/machines | read | UAT IAT | ✖️ |
GET /user/codespaces/{codespace_name}/machines | read | UAT | ✖️ |
Repository permissions for "Codespaces secrets"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /repos/{owner}/{repo}/codespaces/secrets | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/secrets/public-key | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT | ✖️ |
PUT /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT |
Repository permissions for "Codespaces"
Repository permissions for "Commit statuses"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /repos/{owner}/{repo}/statuses/{sha} | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/commits/{ref}/status | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/commits/{ref}/statuses | read | UAT IAT | ✖️ |
Repository permissions for "Contents"
Repository permissions for "Dependabot alerts"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | write | UAT IAT | ✖️ |
GET /orgs/{org}/dependabot/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | read | UAT IAT | ✖️ |
Repository permissions for "Dependabot secrets"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | ✖️ |
DELETE /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets/public-key | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | read | UAT IAT | ✖️ |
Repository permissions for "Deployments"
Repository permissions for "Environments"
Repository permissions for "Issues"
Repository permissions for "Metadata"
Repository permissions for "Pages"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /repos/{owner}/{repo}/pages | write | UAT IAT | |
PUT /repos/{owner}/{repo}/pages | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/pages | write | UAT IAT | |
POST /repos/{owner}/{repo}/pages/builds | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/pages/deployment | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/health | write | UAT IAT | |
GET /repos/{owner}/{repo}/pages | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds/latest | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds/{build_id} | read | UAT IAT | ✖️ |
Repository permissions for "Projects"
Repository permissions for "Pull requests"
Repository permissions for "Repository security advisories"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /orgs/{org}/security-advisories | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories/reports | write | UAT IAT | ✖️ |
PATCH /repos/{owner}/{repo}/security-advisories/{ghsa_id} | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories/{ghsa_id}/cve | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/security-advisories | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/security-advisories/{ghsa_id} | read | UAT IAT | ✖️ |
Repository permissions for "Secret scanning alerts"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number} | write | UAT IAT | ✖️ |
GET /orgs/{org}/secret-scanning/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number} | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number}/locations | read | UAT IAT | ✖️ |
Repository permissions for "Secrets"
Repository permissions for "Variables"
Repository permissions for "Webhooks"
Repository permissions for "Workflows"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /repos/{owner}/{repo}/git/refs | write | UAT IAT | |
PATCH /repos/{owner}/{repo}/git/refs/{ref} | write | UAT IAT |
User permissions for "Block another user"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /user/blocks/{username} | write | UAT | ✖️ |
DELETE /user/blocks/{username} | write | UAT | ✖️ |
GET /user/blocks | read | UAT | ✖️ |
GET /user/blocks/{username} | read | UAT | ✖️ |
User permissions for "Codespaces user secrets"
User permissions for "Email addresses"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /user/email/visibility | write | UAT | ✖️ |
POST /user/emails | write | UAT | ✖️ |
DELETE /user/emails | write | UAT | ✖️ |
GET /user/emails | read | UAT | ✖️ |
GET /user/public_emails | read | UAT | ✖️ |
User permissions for "Followers"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /user/following/{username} | write | UAT | ✖️ |
DELETE /user/following/{username} | write | UAT | ✖️ |
GET /user/followers | read | UAT | ✖️ |
GET /user/following | read | UAT | ✖️ |
GET /user/following/{username} | read | UAT | ✖️ |
User permissions for "GPG keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/gpg_keys | write | UAT | ✖️ |
DELETE /user/gpg_keys/{gpg_key_id} | write | UAT | ✖️ |
GET /user/gpg_keys | read | UAT | ✖️ |
GET /user/gpg_keys/{gpg_key_id} | read | UAT | ✖️ |
User permissions for "Gists"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /gists | write | UAT | |
PATCH /gists/{gist_id} | write | UAT | |
DELETE /gists/{gist_id} | write | UAT | |
POST /gists/{gist_id}/comments | write | UAT | |
PATCH /gists/{gist_id}/comments/{comment_id} | write | UAT | |
DELETE /gists/{gist_id}/comments/{comment_id} | write | UAT | |
POST /gists/{gist_id}/forks | write | UAT | |
PUT /gists/{gist_id}/star | write | UAT | |
DELETE /gists/{gist_id}/star | write | UAT |
User permissions for "Git SSH keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/keys | write | UAT | ✖️ |
DELETE /user/keys/{key_id} | write | UAT | ✖️ |
GET /user/keys | read | UAT | ✖️ |
GET /user/keys/{key_id} | read | UAT | ✖️ |
GET /users/{username}/keys | read | UAT IAT | ✖️ |
User permissions for "Interaction limits"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /user/interaction-limits | write | UAT | ✖️ |
DELETE /user/interaction-limits | write | UAT | ✖️ |
GET /user/interaction-limits | read | UAT | ✖️ |
User permissions for "Notifications"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /notifications | read | UAT |
User permissions for "Plan"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /users/{username}/settings/billing/actions | read | UAT | ✖️ |
GET /users/{username}/settings/billing/packages | read | UAT | ✖️ |
GET /users/{username}/settings/billing/shared-storage | read | UAT | ✖️ |
User permissions for "Profile"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PATCH /user | write | UAT | ✖️ |
POST /user/social_accounts | write | UAT | ✖️ |
DELETE /user/social_accounts | write | UAT | ✖️ |
User permissions for "SSH signing keys"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
POST /user/ssh_signing_keys | write | UAT | ✖️ |
DELETE /user/ssh_signing_keys/{ssh_signing_key_id} | write | UAT | ✖️ |
GET /user/ssh_signing_keys | read | UAT | ✖️ |
GET /user/ssh_signing_keys/{ssh_signing_key_id} | read | UAT | ✖️ |
User permissions for "Starring"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
PUT /user/starred/{owner}/{repo} | write | UAT | ✖️ |
DELETE /user/starred/{owner}/{repo} | write | UAT | ✖️ |
GET /user/starred | read | UAT | ✖️ |
GET /user/starred/{owner}/{repo} | read | UAT | ✖️ |
GET /users/{username}/starred | read | UAT IAT | ✖️ |
User permissions for "Watching"
punto de conexión | Access | Tipos de token | Permisos adicionales |
---|---|---|---|
GET /user/subscriptions | read | UAT | ✖️ |
GET /users/{username}/subscriptions | read | UAT IAT | ✖️ |