You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
feat: Add GitHub App authentication for git cloning and releases
Implements GitHub App authentication to enable authenticated access to
private repositories and releases. This provides better security and
higher rate limits compared to personal access tokens.
Key features:
- JWT generation with RSA signing for GitHub App authentication
- Installation token management with 1-hour expiration and auto-refresh
- Token caching to minimize GitHub API calls
- Credential injection into git clone/fetch operations
- Support for both git strategy and github-releases strategy
- Falls back to system credentials if GitHub App not configured
Implementation details:
- New internal/githubapp package for authentication logic
- Updated gitclone package to support credential providers
- Modified git commands to inject tokens into GitHub URLs
- Added GitHub App configuration blocks to both strategies
- Updated configuration examples in cachew.hcl
Usage:
Configure GitHub App credentials (app ID, private key path, and
installation IDs per org) in the git and github-releases strategy
blocks to enable authenticated access.
0 commit comments