This Page Deprecated
We now recommend installing the Roadie GitHub App instead.
Roadie needs an access token to authenticate with the GitHub APIs in order to perform key functions such as:
- Reading the
catalog-info.yamlfiles in the root of each GitHub repository.
- Reading users and teams from your GitHub organization so you can associate teams with the services they own.
- Creating and writing to repositories when users use the scaffolder to create new services.
There are multiple ways to create and grant scopes on the access token, depending on the level of access that you wish Backstage to have.
This doc covers examples 1 and 2 only. Example 3 requires additional scopes - repository write access.
Unfortunately, Roadie cannot import any repositories, even open-source repositories, without access to a GitHub personal access token.
We strongly recommend you use a GitHub bot account to create the personal access token. This will allow you to strictly limit the access that Roadie has to your GitHub account. You can lock it down to public repositories and/or a small number of repositories.
Create a new GitHub user (bot account), and give it a username and password.
Add the user to your GitHub organization, in a way which ensures that it has read only access to the repositories in the organization.
For example, here’s a
roadiebot user, which does not have write access to the private RoadieHQ/stargazers-notifications repository.
Create a personal access token for this user and give it the
Use this personal access token in Roadie. Roadie now has read only access to organizational data and public repositories.
Create a new GitHub user (or reuse the user from Option 1 above), and give them a username and password.
Add the user to your GitHub organization, in a way which ensures that they have read only access to the repositories in the organization.
For example, here’s a
roadiebot user, which does not have write or admin access to the private RoadieHQ/stargazers-notifications repository.
Create a personal access token for this user, give it the
repo scope provides both read and write abilities to both public and private repositories. In this case however, because the user associated with the token only has read access, no writes can occur.
Once you have a token you can add it to Roadie.