jennybc
commented
4 years ago gh's validation around the gh_pat class would catch a lot of non-PAT creds. You probably already thought of that.
Open gaborcsardi opened 4 years ago
jennybc
commented
4 years ago gh's validation around the gh_pat class would catch a lot of non-PAT creds. You probably already thought of that.
gaborcsardi
commented
4 years ago Yeah, AFAICT right now you get a silent "no pat". Should this be an error or a warning instead?
jennybc
commented
4 years ago Although it's part of a user-facing API for putting creds into the store, credentials certainly tries to catch this case:
and even goes on to reject that cred (presumably to make sure there's no entry with a real username + a PAT in the store).
gaborcsardi
commented
4 years ago I think it would reasonable to do that in gh and usethis, when you need a GH PAT. So maybe gh should have a set_pat() function?
But the git credential store is actually used for a lot of things already, not just PATs, so I don't think gitcreds should have such restrictions.
jennybc
commented
4 years ago So maybe gh should have a set_pat() function?
Yes, I think so. I think usethis may also need one. I think any package that pulls from the store potentially needs to offer a humane way to put something there as well. You can, of course, recommend a function in another package for this. But with usethis, for example, we generally try to provide lots of scaffolding and make usethis feel like the storefront.
gaborcsardi
commented
4 years ago I think any package that pulls from the store potentially needs to offer a humane way to put something there as well.
Yeah, gitcreds_set() can put anything there. The question is whether to have one specialized to PATs.
jennybc
commented
4 years ago I think our current gh_pat validation would be a good bare minimum for a function in gh and/or usethis that helps a user store a PAT.
https://github.com/r-lib/gh/blob/d41174a449daf6906dd6fefd25ba8494969a30c5/R/gh_token.R#L63-L84
Which, I think, suggests that gh should offer this and usethis should recommend or wrap that. Because the gh_pat validation stuff won't be exported.
gaborcsardi
commented
3 years ago Closed wrong issue....
gaborcsardi
commented
3 years ago @jennybc Do you remember if we wanted to do anything more about this? Or it is fine as it is now?
jennybc
commented
3 years ago I have definitely heard of people who enter a password when asked for a PAT, then are confused when things don't work. So I'm still a general fan of trying to catch this and emit a message that suggests what might be wrong.
Sumidu
commented
3 years ago I was really confused about this error. Since github changed the format of the PATs creating a new one does not create a legal PAT for gh. However, updating gh helped. It was confusing for me (and others) because updating usethis and git_creds did not help. Which were the only packages we were actively using.
TLDR: update gh, git_creds, and usethis
Sending a password that is not a PAT can be a security issue, although we are sending it to the very same host we would send the PAT to, so maybe not a very serious issue?
Also, at the time of writing we don't know any situation when sending a non-PAT password in the
Authorizationheader would do anything useful.So probably we should error?