search

GothenburgBitFactory / bugwarrior

Pull github, bitbucket, and trac issues into taskwarrior
http://pypi.python.org/pypi/bugwarrior
GNU General Public License v3.0
732 stars 209 forks source link

[Github] Shared tokens, expiration #932

Open srl295 opened 2 years ago

srl295 commented 2 years ago

a couple of ideas, around github expiring tokens

  1. I now find i have several targets sharing the same github.token. Would it be possible to use named tokens such as the following, so that updating a token is easier:
[github_abc]
service = github
github.token = $token3

[github_def]
service = github
github.token = $token3

[general.tokens]
token3=ghp_123456
  1. according to this page there is a header GitHub-Authentication-Token-Expiration giving the expiration date. Could the tool give this feedback back on the command line? it should be collated so that only one message is given per token, even if the token is used multiple times.
ryneeverett commented 2 years ago
  1. If we were going to support variables in INI files it might make sense to enable extended interpolation and add a [Variables] section to the configuration scheme for that purpose. However, it seems like for the use case you're presenting this feature could be renamed "Even Easier to Use Footgun" because I don't think we should be encouraging people to store secrets in bugwarriorrc in the first place when there are better options.
srl295 commented 2 years ago

feat: Even Easier to Use Footgun

thanks, i will read the docs. I should be using the hooks, too (next to that link).

  1. still could be of interest, though