open-vault/website/source/api/auth/github/index.html.md

---
layout: "api"
page_title: "GitHub - Auth Methods - HTTP API"
sidebar_current: "docs-http-auth-github"
description: |-
  This is the API documentation for the Vault Github auth method.
---

# Github Auth Method (API)

This is the API documentation for the Vault Github auth method. For
general information about the usage and operation of the Github method, please
see the [Vault Github method documentation](/docs/auth/github.html).

This documentation assumes the Github method is enabled at the `/auth/github`
path in Vault. Since it is possible to enable auth methods at any location,
please update your API calls accordingly.

## Configure Method

Configures the connection parameters for GitHub. This path honors the
distinction between the `create` and `update` capabilities inside ACL policies.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `POST`   | `/auth/github/config`          | `204 (empty body)`     |

### Parameters

- `organization` `(string: <required>)` - The organization users must be part
  of.
- `base_url` `(string: "")` - The API endpoint to use. Useful if you are running
  GitHub Enterprise or an API-compatible authentication server.
- `ttl` `(string: "")` - Duration after which authentication will be expired.
- `max_ttl` `(string: "")` - Maximum duration after which authentication will
  be expired.

### Sample Payload

```json
{
  "organization": "acme-org"
}
```

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    --request POST \
    --data @payload.json \
    http://127.0.0.1:8200/v1/auth/github/config
```

## Read Configuration

Reads the GitHub configuration.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `GET`    | `/auth/github/config`        | `200 application/json` |

### Sample Request

```
$ curl \
    --header "X-Vault-Token: ..." \
    http://127.0.0.1:8200/v1/auth/github/config
```

### Sample Response

```json
{
  "request_id": "812229d7-a82e-0b20-c35b-81ce8c1b9fa6",
  "lease_id": "",
  "lease_duration": 0,
  "renewable": false,
  "data": {
    "organization": "acme-org",
    "base_url": "",
    "ttl": "",
    "max_ttl": ""
  },
  "warnings": null
}
```

## Login

Login using GitHub access token.

| Method   | Path                         | Produces               |
| :------- | :--------------------------- | :--------------------- |
| `POST`   | `/auth/github/login`         | `200 application/json` |

### Parameters

- `token` `(string: <required>)` - GitHub personal API token.

### Sample Payload

```json
{
  "token": "ABC123..."
}
```

### Sample Request

```
$ curl \
    --request POST \
    http://127.0.0.1:8200/v1/auth/github/login
```

### Sample Response

```javascript
{
  "lease_id": "",
  "renewable": false,
  "lease_duration": 0,
  "data": null,
  "warnings": null,
  "auth": {
    "client_token": "64d2a8f2-2a2f-5688-102b-e6088b76e344",
    "accessor": "18bb8f89-826a-56ee-c65b-1736dc5ea27d",
    "policies": ["default"],
    "metadata": {
      "username": "fred",
      "org": "acme-org"
    },
  },
  "lease_duration": 7200,
  "renewable": true
}
 ```
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`---`
			`layout: "api"`
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`page_title: "GitHub - Auth Methods - HTTP API"`
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`sidebar_current: "docs-http-auth-github"`
			`description: \|-`
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`This is the API documentation for the Vault Github auth method.`
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00			`---`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`# Github Auth Method (API)`
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`This is the API documentation for the Vault Github auth method. For`
			`general information about the usage and operation of the Github method, please`
			`see the [Vault Github method documentation](/docs/auth/github.html).`
API Docs updates (#3101) 2017-08-08 16:28:17 +00:00
Oops typo 2017-09-21 17:39:12 +00:00			This documentation assumes the Github method is enabled at the `/auth/github`
			`path in Vault. Since it is possible to enable auth methods at any location,`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			`please update your API calls accordingly.`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`## Configure Method`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			`Configures the connection parameters for GitHub. This path honors the`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			distinction between the `create` and `update` capabilities inside ACL policies.

			`\| Method \| Path \| Produces \|`
			`\| :------- \| :--------------------------- \| :--------------------- \|`
			\| `POST` \| `/auth/github/config` \| `204 (empty body)` \|

			`### Parameters`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			- `organization` `(string: <required>)` - The organization users must be part
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			`of.`
			- `base_url` `(string: "")` - The API endpoint to use. Useful if you are running
			`GitHub Enterprise or an API-compatible authentication server.`
			- `ttl` `(string: "")` - Duration after which authentication will be expired.
Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			- `max_ttl` `(string: "")` - Maximum duration after which authentication will
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			`be expired.`

			`### Sample Payload`

			```json
			`{`
			`"organization": "acme-org"`
			`}`
			```

			`### Sample Request`

			```
			`$ curl \`
			`--header "X-Vault-Token: ..." \`
			`--request POST \`
			`--data @payload.json \`
Drop vault.rocks (#4186) 2018-03-23 15:41:51 +00:00			`http://127.0.0.1:8200/v1/auth/github/config`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			```

			`## Read Configuration`

Oops typo 2017-09-21 17:39:12 +00:00			`Reads the GitHub configuration.`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00
			`\| Method \| Path \| Produces \|`
			`\| :------- \| :--------------------------- \| :--------------------- \|`
			\| `GET` \| `/auth/github/config` \| `200 application/json` \|

			`### Sample Request`

			```
			`$ curl \`
			`--header "X-Vault-Token: ..." \`
Drop vault.rocks (#4186) 2018-03-23 15:41:51 +00:00			`http://127.0.0.1:8200/v1/auth/github/config`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			```

			`### Sample Response`

			```json
			`{`
			`"request_id": "812229d7-a82e-0b20-c35b-81ce8c1b9fa6",`
			`"lease_id": "",`
			`"lease_duration": 0,`
			`"renewable": false,`
			`"data": {`
			`"organization": "acme-org",`
			`"base_url": "",`
			`"ttl": "",`
			`"max_ttl": ""`
			`},`
			`"warnings": null`
			`}`
			```

			`## Login`

			`Login using GitHub access token.`

			`\| Method \| Path \| Produces \|`
			`\| :------- \| :--------------------------- \| :--------------------- \|`
			\| `POST` \| `/auth/github/login` \| `200 application/json` \|

			`### Parameters`

			- `token` `(string: <required>)` - GitHub personal API token.

			`### Sample Payload`

			```json
			`{`
			`"token": "ABC123..."`
			`}`
			```

			`### Sample Request`

			```
			`$ curl \`
			`--request POST \`
Drop vault.rocks (#4186) 2018-03-23 15:41:51 +00:00			`http://127.0.0.1:8200/v1/auth/github/login`
API Docs updates (#3135) 2017-08-09 15:22:19 +00:00			```

			`### Sample Response`

			```javascript
			`{`
			`"lease_id": "",`
			`"renewable": false,`
			`"lease_duration": 0,`
			`"data": null,`
			`"warnings": null,`
			`"auth": {`
			`"client_token": "64d2a8f2-2a2f-5688-102b-e6088b76e344",`
			`"accessor": "18bb8f89-826a-56ee-c65b-1736dc5ea27d",`
			`"policies": ["default"],`
			`"metadata": {`
			`"username": "fred",`
			`"org": "acme-org"`
			`},`
			`},`
			`"lease_duration": 7200,`
			`"renewable": true`
			`}`
A few simple fixes for the Github API docs (#3432) 2017-10-06 10:13:47 +00:00			```