1

A React application has a standard OAuth flow that grants access to Github with no scope. The user can go through another OAuth flow to grant repo access to the application. How can the application tell if the user has granted the repo scope or not?

This looks like it would be doable using the /application/grants API, but that API is scheduled to be deprecated and it only accepts Basic Auth. What's the replacement?

Ken White
  • 123,280
  • 14
  • 225
  • 444
Denise Mauldin
  • 5,397
  • 5
  • 32
  • 51
  • As per the deprecation notice [here](https://developer.github.com/changes/2020-02-14-deprecating-oauth-auth-endpoint/#changes-to-make) , they suggest using a [web application flow](https://developer.github.com/apps/building-oauth-apps/authorizing-oauth-apps/#web-application-flow). I haven't tried it, though. – Asif Kamran Malick Aug 03 '20 at 08:15
  • @AsifKamranMalick Thanks for the comment. I looked through that flow and I can't figure out how I would know to go through the flow with a user? I have the flow built and it works but I don't want to request the flow every time when it's not necessary? – Denise Mauldin Aug 03 '20 at 18:18

0 Answers0