docker / roadmap

Welcome to the Public Roadmap for All Things Docker! We welcome your ideas.
https://github.com/orgs/docker/projects/51
Creative Commons Zero v1.0 Universal
1.74k stars 261 forks source link

Personal Access Token only for specific repository #695

Open ahamboeck opened 3 months ago

ahamboeck commented 3 months ago

Tell us about your request I hope I don't overlook something but I wish there was a way for organizations and its members to generate a personal access token for specific repositories only.

Which service(s) is this request for? Docker Hub

Tell us about the problem you're trying to solve. What are you trying to do, and why is it hard? For example we would like to share one repository with a PAT for someone else but do not want to add a new member to the organization but only give him access to a certain with an universal arbitrary member account.

Are you currently working around the issue? The only workaround as I know is to create a new user and add it to the organization with specific permissions.

francesco-corti commented 3 months ago

Hi,

I can see two topics in this request: the first is about providing a personal access token to someone else that is not the one generating it (if I understand it correctly), the second is about granular permissions on that personal access token.

The first is something that we recommend not to do for security reasons.

The second is something that we have in our roadmap. Of course this feature is going to require the permission capability that is something available for some of the available packages.

I hope this helps.