À propos des autorisations de GitHub App
Les GitHub Apps sont créées avec un ensemble d’autorisations. Les autorisations définissent les ressources auxquelles l’GitHub App peuvent accéder via l’API. Pour plus d’informations, consultez « Choix des autorisations pour une application GitHub ».
Pour vous aider à choisir les autorisations appropriées, vous recevrez l’en-tête X-Accepted-GitHub-Permissions
dans la réponse de l’API REST. L’en-tête vous indique les autorisations requises pour accéder au point de terminaison. Pour plus d’informations, consultez « Dépannage ».
Certains points de terminaison nécessitent des autorisations supplémentaires. Dans ce cas, la colonne « Autorisations supplémentaires » indique les autres autorisations requises pour utiliser le point de terminaison.
Business permissions for "Enterprise administration"
Organization permissions for "Administration"
Organization permissions for "Blocking users"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /orgs/{org}/blocks/{username} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/blocks/{username} | write | UAT IAT | ✖️ |
GET /orgs/{org}/blocks | read | UAT IAT | ✖️ |
GET /orgs/{org}/blocks/{username} | read | UAT IAT | ✖️ |
Organization permissions for "Custom repository roles"
Organization permissions for "Events"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /users/{username}/events/orgs/{org} | read | UAT | ✖️ |
Organization permissions for "GitHub Copilot for Business"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /orgs/{org}/copilot/billing | write | UAT IAT | ✖️ |
GET /orgs/{org}/copilot/billing/seats | write | UAT IAT | ✖️ |
POST /orgs/{org}/copilot/billing/selected_teams | write | UAT IAT | ✖️ |
Organization permissions for "Members"
Organization permissions for "Organization announcement banners"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PATCH /orgs/{org}/announcement | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/announcement | write | UAT IAT | ✖️ |
GET /orgs/{org}/announcement | read | UAT IAT | ✖️ |
Organization permissions for "Organization codespaces secrets"
Organization permissions for "Organization codespaces settings"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /orgs/{org}/codespaces/access | write | UAT IAT | ✖️ |
POST /orgs/{org}/codespaces/access/selected_users | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/codespaces/access/selected_users | write | UAT IAT | ✖️ |
Organization permissions for "Organization codespaces"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
DELETE /orgs/{org}/members/{username}/codespaces/{codespace_name} | write | UAT IAT | |
POST /orgs/{org}/members/{username}/codespaces/{codespace_name}/stop | write | UAT IAT | |
GET /orgs/{org}/codespaces | read | UAT IAT | |
GET /orgs/{org}/members/{username}/codespaces | read | UAT IAT |
Organization permissions for "Organization dependabot secrets"
Organization permissions for "Personal access token requests"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /orgs/{org}/personal-access-token-requests | write | UAT IAT | ✖️ |
POST /orgs/{org}/personal-access-token-requests/{pat_request_id} | write | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-token-requests | read | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-token-requests/{pat_request_id}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Personal access tokens"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /orgs/{org}/personal-access-tokens | write | UAT IAT | ✖️ |
POST /orgs/{org}/personal-access-tokens/{pat_id} | write | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-tokens | read | UAT IAT | ✖️ |
GET /orgs/{org}/personal-access-tokens/{pat_id}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Projects"
Organization permissions for "Secrets"
Organization permissions for "Self-hosted runners"
Organization permissions for "Team discussions"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/comments/{comment_number}/reactions/{reaction_id} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/teams/{team_slug}/discussions/{discussion_number}/reactions/{reaction_id} | write | UAT IAT | ✖️ |
Organization permissions for "Variables"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /orgs/{org}/actions/variables | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/actions/variables/{name} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/actions/variables/{name} | write | UAT IAT | ✖️ |
PUT /orgs/{org}/actions/variables/{name}/repositories | write | UAT IAT | ✖️ |
PUT /orgs/{org}/actions/variables/{name}/repositories/{repository_id} | write | UAT IAT | |
GET /orgs/{org}/actions/variables | read | UAT IAT | ✖️ |
GET /orgs/{org}/actions/variables/{name} | read | UAT IAT | ✖️ |
GET /orgs/{org}/actions/variables/{name}/repositories | read | UAT IAT | ✖️ |
Organization permissions for "Webhooks"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /orgs/{org}/hooks | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/hooks/{hook_id} | write | UAT IAT | ✖️ |
DELETE /orgs/{org}/hooks/{hook_id} | write | UAT IAT | ✖️ |
PATCH /orgs/{org}/hooks/{hook_id}/config | write | UAT IAT | ✖️ |
POST /orgs/{org}/hooks/{hook_id}/deliveries/{delivery_id}/attempts | write | UAT IAT | ✖️ |
POST /orgs/{org}/hooks/{hook_id}/pings | write | UAT IAT | ✖️ |
GET /orgs/{org}/hooks | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id} | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/config | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/deliveries | read | UAT IAT | ✖️ |
GET /orgs/{org}/hooks/{hook_id}/deliveries/{delivery_id} | read | UAT IAT | ✖️ |
Repository permissions for "Actions"
Repository permissions for "Administration"
Repository permissions for "Checks"
Repository permissions for "Code scanning alerts"
Repository permissions for "Codespaces lifecycle admin"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /orgs/{org}/members/{username}/codespaces/{codespace_name}/stop | write | UAT IAT | |
POST /user/codespaces/{codespace_name}/exports | write | UAT | ✖️ |
POST /user/codespaces/{codespace_name}/start | write | UAT | ✖️ |
POST /user/codespaces/{codespace_name}/stop | write | UAT | ✖️ |
GET /user/codespaces/{codespace_name}/exports/{export_id} | read | UAT | ✖️ |
Repository permissions for "Codespaces metadata"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /repos/{owner}/{repo}/codespaces/devcontainers | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/machines | read | UAT IAT | ✖️ |
GET /user/codespaces/{codespace_name}/machines | read | UAT | ✖️ |
Repository permissions for "Codespaces secrets"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /repos/{owner}/{repo}/codespaces/secrets | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/secrets/public-key | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT | ✖️ |
PUT /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/codespaces/secrets/{secret_name} | write | UAT IAT |
Repository permissions for "Codespaces"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
DELETE /orgs/{org}/members/{username}/codespaces/{codespace_name} | write | UAT IAT | |
POST /repos/{owner}/{repo}/codespaces | write | UAT | ✖️ |
GET /repos/{owner}/{repo}/codespaces/new | write | UAT | ✖️ |
POST /repos/{owner}/{repo}/pulls/{pull_number}/codespaces | write | UAT | ✖️ |
POST /user/codespaces | write | UAT | ✖️ |
PATCH /user/codespaces/{codespace_name} | write | UAT | ✖️ |
DELETE /user/codespaces/{codespace_name} | write | UAT | ✖️ |
POST /user/codespaces/{codespace_name}/publish | write | UAT | ✖️ |
GET /orgs/{org}/codespaces | read | UAT IAT | |
GET /orgs/{org}/members/{username}/codespaces | read | UAT IAT | |
GET /repos/{owner}/{repo}/codespaces | read | UAT | ✖️ |
GET /user/codespaces | read | UAT | ✖️ |
GET /user/codespaces/{codespace_name} | read | UAT | ✖️ |
Repository permissions for "Commit statuses"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /repos/{owner}/{repo}/statuses/{sha} | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/commits/{ref}/status | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/commits/{ref}/statuses | read | UAT IAT | ✖️ |
Repository permissions for "Contents"
Repository permissions for "Dependabot alerts"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PATCH /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | write | UAT IAT | ✖️ |
GET /orgs/{org}/dependabot/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/alerts/{alert_number} | read | UAT IAT | ✖️ |
Repository permissions for "Dependabot secrets"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | ✖️ |
DELETE /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets/public-key | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/dependabot/secrets/{secret_name} | read | UAT IAT | ✖️ |
Repository permissions for "Deployments"
Repository permissions for "Environments"
Repository permissions for "Issues"
Repository permissions for "Metadata"
Repository permissions for "Pages"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /repos/{owner}/{repo}/pages | write | UAT IAT | |
PUT /repos/{owner}/{repo}/pages | write | UAT IAT | |
DELETE /repos/{owner}/{repo}/pages | write | UAT IAT | |
POST /repos/{owner}/{repo}/pages/builds | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/pages/deployment | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/health | write | UAT IAT | |
GET /repos/{owner}/{repo}/pages | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds/latest | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/pages/builds/{build_id} | read | UAT IAT | ✖️ |
Repository permissions for "Projects"
Repository permissions for "Pull requests"
Repository permissions for "Repository security advisories"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /orgs/{org}/security-advisories | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories/reports | write | UAT IAT | ✖️ |
PATCH /repos/{owner}/{repo}/security-advisories/{ghsa_id} | write | UAT IAT | ✖️ |
POST /repos/{owner}/{repo}/security-advisories/{ghsa_id}/cve | write | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/security-advisories | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/security-advisories/{ghsa_id} | read | UAT IAT | ✖️ |
Repository permissions for "Secret scanning alerts"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PATCH /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number} | write | UAT IAT | ✖️ |
GET /orgs/{org}/secret-scanning/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number} | read | UAT IAT | ✖️ |
GET /repos/{owner}/{repo}/secret-scanning/alerts/{alert_number}/locations | read | UAT IAT | ✖️ |
Repository permissions for "Secrets"
Repository permissions for "Variables"
Repository permissions for "Webhooks"
Repository permissions for "Workflows"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /repos/{owner}/{repo}/git/refs | write | UAT IAT | |
PATCH /repos/{owner}/{repo}/git/refs/{ref} | write | UAT IAT |
User permissions for "Block another user"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /user/blocks/{username} | write | UAT | ✖️ |
DELETE /user/blocks/{username} | write | UAT | ✖️ |
GET /user/blocks | read | UAT | ✖️ |
GET /user/blocks/{username} | read | UAT | ✖️ |
User permissions for "Codespaces user secrets"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /user/codespaces/secrets/{secret_name} | write | UAT | ✖️ |
DELETE /user/codespaces/secrets/{secret_name} | write | UAT | ✖️ |
PUT /user/codespaces/secrets/{secret_name}/repositories | write | UAT | |
PUT /user/codespaces/secrets/{secret_name}/repositories/{repository_id} | write | UAT | |
DELETE /user/codespaces/secrets/{secret_name}/repositories/{repository_id} | write | UAT | |
GET /user/codespaces/secrets | read | UAT | ✖️ |
GET /user/codespaces/secrets/public-key | read | UAT | ✖️ |
GET /user/codespaces/secrets/{secret_name} | read | UAT | ✖️ |
GET /user/codespaces/secrets/{secret_name}/repositories | read | UAT |
User permissions for "Email addresses"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PATCH /user/email/visibility | write | UAT | ✖️ |
POST /user/emails | write | UAT | ✖️ |
DELETE /user/emails | write | UAT | ✖️ |
GET /user/emails | read | UAT | ✖️ |
GET /user/public_emails | read | UAT | ✖️ |
User permissions for "Followers"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /user/following/{username} | write | UAT | ✖️ |
DELETE /user/following/{username} | write | UAT | ✖️ |
GET /user/followers | read | UAT | ✖️ |
GET /user/following | read | UAT | ✖️ |
GET /user/following/{username} | read | UAT | ✖️ |
User permissions for "GPG keys"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /user/gpg_keys | write | UAT | ✖️ |
DELETE /user/gpg_keys/{gpg_key_id} | write | UAT | ✖️ |
GET /user/gpg_keys | read | UAT | ✖️ |
GET /user/gpg_keys/{gpg_key_id} | read | UAT | ✖️ |
User permissions for "Gists"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /gists | write | UAT | |
PATCH /gists/{gist_id} | write | UAT | |
DELETE /gists/{gist_id} | write | UAT | |
POST /gists/{gist_id}/comments | write | UAT | |
PATCH /gists/{gist_id}/comments/{comment_id} | write | UAT | |
DELETE /gists/{gist_id}/comments/{comment_id} | write | UAT | |
POST /gists/{gist_id}/forks | write | UAT | |
PUT /gists/{gist_id}/star | write | UAT | |
DELETE /gists/{gist_id}/star | write | UAT |
User permissions for "Git SSH keys"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /user/keys | write | UAT | ✖️ |
DELETE /user/keys/{key_id} | write | UAT | ✖️ |
GET /user/keys | read | UAT | ✖️ |
GET /user/keys/{key_id} | read | UAT | ✖️ |
GET /users/{username}/keys | read | UAT IAT | ✖️ |
User permissions for "Interaction limits"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /user/interaction-limits | write | UAT | ✖️ |
DELETE /user/interaction-limits | write | UAT | ✖️ |
GET /user/interaction-limits | read | UAT | ✖️ |
User permissions for "Notifications"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /notifications | read | UAT |
User permissions for "Plan"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /users/{username}/settings/billing/actions | read | UAT | ✖️ |
GET /users/{username}/settings/billing/packages | read | UAT | ✖️ |
GET /users/{username}/settings/billing/shared-storage | read | UAT | ✖️ |
User permissions for "Profile"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PATCH /user | write | UAT | ✖️ |
POST /user/social_accounts | write | UAT | ✖️ |
DELETE /user/social_accounts | write | UAT | ✖️ |
User permissions for "SSH signing keys"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
POST /user/ssh_signing_keys | write | UAT | ✖️ |
DELETE /user/ssh_signing_keys/{ssh_signing_key_id} | write | UAT | ✖️ |
GET /user/ssh_signing_keys | read | UAT | ✖️ |
GET /user/ssh_signing_keys/{ssh_signing_key_id} | read | UAT | ✖️ |
User permissions for "Starring"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
PUT /user/starred/{owner}/{repo} | write | UAT | ✖️ |
DELETE /user/starred/{owner}/{repo} | write | UAT | ✖️ |
GET /user/starred | read | UAT | ✖️ |
GET /user/starred/{owner}/{repo} | read | UAT | ✖️ |
GET /users/{username}/starred | read | UAT IAT | ✖️ |
User permissions for "Watching"
Point de terminaison | Access | Types de jetons | Autorisations supplémentaires |
---|---|---|---|
GET /user/subscriptions | read | UAT | ✖️ |
GET /users/{username}/subscriptions | read | UAT IAT | ✖️ |