misc: permission scope on github account is too broad

42atomys / stud42

Stud42 official repository since major 3 update (https://s42.app)

https://s42.app

MIT License

859 stars 27 forks source link

misc: permission scope on github account is too broad #304

Closed wendrul closed 1 year ago

wendrul commented 1 year ago

Please exprime yourself

When connecting the github account upon creation, many unnecessary permissions are requested, such as read/write of repos and more. It might be a good idea to revisit the necessary permissions and reduce the scope to the minimum required.

Also, I revoked the app permissions from github, but there is no way to reconnect the service.

Code of Conduct

[X] I agree to follow this project's Code of Conduct

42atomys commented 1 year ago

Hi, thanks for your issue.

This is explained in another issue for the scope and the weird reason about "write access" (this is already the minimum scope):

https://github.com/42Atomys/stud42/issues/275

If you have revoke your GitHub account, yes actually no way to reconnect 😔 This is planned under the "settings/access" page in the future on beta !

But don't worry, you will be notified when this page has released if your credentials is revoked 😃