Script 'Create a scoped access token' for github

Create a scoped access token

Verified

Use a non-scoped user-to-server access token to create a repository scoped and/or permission scoped user-to-server access token.

Created by hugo697 276 days ago Viewed 8919 times

Submitted by hugo697 Typescript (fetch-only)

Verified 276 days ago

All edits

Permalink

type Github = {
  token: string;
};
/**
 * Create a scoped access token
 * Use a non-scoped user-to-server access token to create a repository scoped and/or permission scoped user-to-server access token.
 */
export async function main(
  auth: Github,
  client_id: string,
  body: {
    access_token: string;
    permissions?: {
      actions?: "read" | "write";
      administration?: "read" | "write";
      checks?: "read" | "write";
      contents?: "read" | "write";
      deployments?: "read" | "write";
      environments?: "read" | "write";
      issues?: "read" | "write";
      members?: "read" | "write";
      metadata?: "read" | "write";
      organization_administration?: "read" | "write";
      organization_announcement_banners?: "read" | "write";
      organization_custom_roles?: "read" | "write";
      organization_hooks?: "read" | "write";
      organization_packages?: "read" | "write";
      organization_plan?: "read";
      organization_projects?: "read" | "write" | "admin";
      organization_secrets?: "read" | "write";
      organization_self_hosted_runners?: "read" | "write";
      organization_user_blocking?: "read" | "write";
      packages?: "read" | "write";
      pages?: "read" | "write";
      pull_requests?: "read" | "write";
      repository_announcement_banners?: "read" | "write";
      repository_hooks?: "read" | "write";
      repository_projects?: "read" | "write" | "admin";
      secret_scanning_alerts?: "read" | "write";
      secrets?: "read" | "write";
      security_events?: "read" | "write";
      single_file?: "read" | "write";
      statuses?: "read" | "write";
      team_discussions?: "read" | "write";
      vulnerability_alerts?: "read" | "write";
      workflows?: "write";
      [k: string]: unknown;
    };
    repositories?: string[];
    repository_ids?: number[];
    target?: string;
    target_id?: number;
    [k: string]: unknown;
  }
) {
  const url = new URL(
    `https://api.github.com/applications/${client_id}/token/scoped`
  );

  const response = await fetch(url, {
    method: "POST",
    headers: {
      "Content-Type": "application/json",
      Authorization: "Bearer " + auth.token,
    },
    body: JSON.stringify(body),
  });
  if (!response.ok) {
    const text = await response.text();
    throw new Error(`${response.status} ${text}`);
  }
  return await response.json();
}


`1`	`type Github = {`
`2`	`token: string;`
`3`	`};`
`4`	`/**`
`5`	`* Create a scoped access token`
`6`	`* Use a non-scoped user-to-server access token to create a repository scoped and/or permission scoped user-to-server access token.`
`7`	`*/`
`8`	`export async function main(`
`9`	`auth: Github,`
`10`	`client_id: string,`
`11`	`body: {`
`12`	`access_token: string;`
`13`	`permissions?: {`
`14`	`actions?: "read" \| "write";`
`15`	`administration?: "read" \| "write";`
`16`	`checks?: "read" \| "write";`
`17`	`contents?: "read" \| "write";`
`18`	`deployments?: "read" \| "write";`
`19`	`environments?: "read" \| "write";`
`20`	`issues?: "read" \| "write";`
`21`	`members?: "read" \| "write";`
`22`	`metadata?: "read" \| "write";`
`23`	`organization_administration?: "read" \| "write";`
`24`	`organization_announcement_banners?: "read" \| "write";`
`25`	`organization_custom_roles?: "read" \| "write";`
`26`	`organization_hooks?: "read" \| "write";`
`27`	`organization_packages?: "read" \| "write";`
`28`	`organization_plan?: "read";`
`29`	`organization_projects?: "read" \| "write" \| "admin";`
`30`	`organization_secrets?: "read" \| "write";`
`31`	`organization_self_hosted_runners?: "read" \| "write";`
`32`	`organization_user_blocking?: "read" \| "write";`
`33`	`packages?: "read" \| "write";`
`34`	`pages?: "read" \| "write";`
`35`	`pull_requests?: "read" \| "write";`
`36`	`repository_announcement_banners?: "read" \| "write";`
`37`	`repository_hooks?: "read" \| "write";`
`38`	`repository_projects?: "read" \| "write" \| "admin";`
`39`	`secret_scanning_alerts?: "read" \| "write";`
`40`	`secrets?: "read" \| "write";`
`41`	`security_events?: "read" \| "write";`
`42`	`single_file?: "read" \| "write";`
`43`	`statuses?: "read" \| "write";`
`44`	`team_discussions?: "read" \| "write";`
`45`	`vulnerability_alerts?: "read" \| "write";`
`46`	`workflows?: "write";`
`47`	`[k: string]: unknown;`
`48`	`};`
`49`	`repositories?: string[];`
`50`	`repository_ids?: number[];`
`51`	`target?: string;`
`52`	`target_id?: number;`
`53`	`[k: string]: unknown;`
`54`	`}`
`55`	`) {`
`56`	`const url = new URL(`
`57`	`https://api.github.com/applications/${client_id}/token/scoped`
`58`	`);`
`59`
`60`	`const response = await fetch(url, {`
`61`	`method: "POST",`
`62`	`headers: {`
`63`	`"Content-Type": "application/json",`
`64`	`Authorization: "Bearer " + auth.token,`
`65`	`},`
`66`	`body: JSON.stringify(body),`
`67`	`});`
`68`	`if (!response.ok) {`
`69`	`const text = await response.text();`
`70`	throw new Error(`${response.status} ${text}`);
`71`	`}`
`72`	`return await response.json();`
`73`	`}`
`74`