t1agob
commented
4 months ago Closing because support for Scoped OAuth is now available on the latest release (#71).
Closed t1agob closed 4 months ago
t1agob
commented
4 months ago Closing because support for Scoped OAuth is now available on the latest release (#71).
Is your feature request related to a problem? Please describe. The PagerDuty plugin for Backstage requires an API Token to be provided to query the REST API. This API Token is generated for an account and can either have read or read/write permissions for all operations provided by the REST API.
This is not necessarily a security risk by itself in the context of the plugin but we should be able to use a restrictive approach and only have the permissions requested by the plugin.
Describe the solution you'd like PagerDuty recently made available Scoped OAuth for both US and EU based accounts which allows an admin to specify which operations and permissions are available to a token.
I would like this feature to be implemented as an alternative way of using the REST API inside the plugin.
Describe alternatives you've considered Currently the only approach supported by the plugin is to use a general or user API Token.