Github app
tofutf provides the ability to create a Github app (opens in a new tab). The app can then be used as an alternative to a personal access token for a VCS provider, offering the following advantages:
- Unlike a personal token, an app is not necessarily tied to an individual's personal Github account (opens in a new tab). Instead it can be owned and installed into a Github organization. If an individual leaves an organization then the app continues to function.
- The app can be installed into more than Github account. For instance, if you install the app into Github organizations
dev
andprod
you can then create VCS providers for those installations respectively, restricting their access to the repositories belonging to each organization. - An app comes with its own webhook (opens in a new tab). Therefore, unlike with personal tokens, tofutf does not need to create webhooks on Github repositories. This can be advantage if you want to overcome the maximum 20 webhook per-repo limit (tofutf creates a separate webhook on a repo for each VCS provider if using a personal token).
- An app has a higher maximum possible rate-limit (opens in a new tab).
- The github app creation process automatically persists the app credentials to the database. There is no copying-and-pasting of credentials involved.
!!! note Github apps also have access to a richer API for status checks. A future version of tofutf will take advantage of this.
Create the app
Select site in the top right corner menu to take you to the site settings page:
Select GitHub app. You are then prompted to create an app:
Select the link to create a new app. You are presented with a form to create the app:
An app has an owner. By default your github personal account is the owner. If you would prefer a Github organization to own the application then enter the name of the organization.
An app is private by default. That means the app can only be installed into the Github account that owns the app, and only repositories in that account will be accessible to tofutf. If you want to install the app into more than one Github account then you need to select the Public checkbox. (This can be changed once the app has been created, via the app settings page on Github).
Click Create and you are redirected to Github. You are given the opportunity to set a name (it must be globally unique and cannot match the name of a Github account):
Click the Create GitHub App for ... button.
You're then redirected back to tofutf, where details of the app are now visible:
Install the app
Once you've created the app you need to install it.
On the Github app page, click the Install button:
You are re-directed to Github, where you can select the repositories that are to be made accessible to tofutf:
!!! note If you created a public app earlier you will first be presented with a choice of accounts to install the app into.
Click the Install button and you'll be re-directed back to tofutf. The installation should now be listed:
You can create a VCS provider from the installation.