You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi. I have an application that integrates with GitHub and accesses users' repositories. I am trying to improve security by segregating keys and webhooks per installation so that if a key or a server is compromised, only one GitHub installation would be affected.
I would like to know if it's possible to configure a different webhook URL for each GitHub app installation, so that I could receive webhooks of different installations at different servers. I looked up at the REST API Docs and could only find the APIs to change the webhook URL but at the GitHub app level, not the installation level. This is basically the same as changing via the GitHub UI.
Another approach could be to create a different GitHub app before sending users to GitHub to install it. This seems to be the closest solution to what I am envisioning. I have read the API docs that seem to indicate this is possible but I haven't completely understood them. It seems that, using this solution, users would be able to change the app settings, and the flow to install in the users' repositories also seems very different. I am looking for something very similar to the normal GitHub app installation flow where I redirect users to my GitHub app page, users just click install and specify the repositories that should have access, and then get redirected to my application.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Select Topic Area
Question
Body
Hi. I have an application that integrates with GitHub and accesses users' repositories. I am trying to improve security by segregating keys and webhooks per installation so that if a key or a server is compromised, only one GitHub installation would be affected.
I would like to know if it's possible to configure a different webhook URL for each GitHub app installation, so that I could receive webhooks of different installations at different servers. I looked up at the REST API Docs and could only find the APIs to change the webhook URL but at the GitHub app level, not the installation level. This is basically the same as changing via the GitHub UI.
Another approach could be to create a different GitHub app before sending users to GitHub to install it. This seems to be the closest solution to what I am envisioning. I have read the API docs that seem to indicate this is possible but I haven't completely understood them. It seems that, using this solution, users would be able to change the app settings, and the flow to install in the users' repositories also seems very different. I am looking for something very similar to the normal GitHub app installation flow where I redirect users to my GitHub app page, users just click install and specify the repositories that should have access, and then get redirected to my application.
Beta Was this translation helpful? Give feedback.
All reactions