Lib.rs

Command line utilities
#access-token #github #cli #personal #command-line #authorization #url

app octopat

GitHub personal access token dispenser

by Doug Tangren

1 unstable release

0.1.0 May 25, 2020

#55 in #access-token

MIT license

23KB
331 lines

:octocat: 🔑
octopat

An interactive GitHub personal access token command line dispenser ✨


Why

I often find myself needing to generate personal access tokens for GitHub integrations and API access. I'm often working from the command line. Pausing to navigate though GitHub settings pages interrupts my flow.

Octopat is designed as a command line interface to work with my command line flow, not against it.

Install

Homebrew (on osx)

$ brew install softprops/tools/octopat

If you want to upgrade to newer versions, use brew upgrade. This will install the latest version.

$ brew upgrade softprops/tools/octopat

GitHub Releases

You can download and install install precompiled binaries from a GitHub Releases page.

You can programmatically install these using curl as well

$ cd $HOME/bin
$ curl -L "https://github.com/softprops/octopat/releases/download/v0.0.1/octopat-$(uname -s)-$(uname -m).tar.gz" \
  | tar -xz -C ~/bin

How it works

In a nutshell, octopat is an embedded oauth application that copies access tokens to your clipboard.

  1. When running octopat for the first time, you will be prompted for a set of GitHub app credentials. If you do not have a GitHub app go ahead an create one here. You will be asked for a for a few pieces of information when creating an app, a name and an Authorization URL.

It's name doesn't matter but you may want to use "octopat" for clarity.

You will also be asked for Authorization callback URL. Set this to "http://localhost:4567/" which will be the url of the embedded octopat application running on your local host.

If you wish to use a different port, do so but provide it with the -p flag on the command line.

Octopat will store these credentials securely on your local keychain so that you won't have to remember them on each run.

  1. GitHub access tokens are scoped to specific capabilities. You'll be presented with a list of scopes to select from then be taken to GitHub to authorize access (to your own GitHub app).

GitHub will then redirect your browser to a server embedded within the cli that will receive the authorization information and exchange it for an access token before copying it to your clipboard.

At no point is secret information stored insecurely or printed out.

Revoking tokens

Since octopat is just an oauth application you can revoke tokens the way you normal would

Why the oauth dance

This CLI uses the web application oauth flow to dispense personal access tokens. Historically this has also been possible through a separate authorizations API which is now deprecated.

Doug Tangren (softprops) 2020

Dependencies

~14–28MB
~446K SLoC