dotnet-sdk
dotnet-sdk copied to clipboard
octokit
GitHub Apps Proof-of-Concept
This PR is the .NET side of https://github.com/octokit/go-sdk/pull/69. It's a work in progress.
It's pending some discussion and decisions:
- How should the examples be structured?
- Are we comfortable using the
GitHubJwtlibrary?
👋 Hi! Thank you for this contribution! Just to let you know, our GitHub SDK team does a round of issue and PR reviews twice a week, every Monday and Friday! We have a process in place for prioritizing and responding to your input. Because you are a part of this community please feel free to comment, add to, or pick up any issues/PRs that are labled with Status: Up for grabs. You & others like you are the reason all of this works! So thank you & happy coding! 🚀
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
FWIW, it's pretty easy to generate JWTs with Microsoft.IdentityModel.JsonWebTokens if you'd prefer to take a dependency on a more "official" library:
using System.Security.Cryptography;
using Microsoft.IdentityModel.JsonWebTokens;
using Microsoft.IdentityModel.Tokens;
string CreateJsonWebToken(string clientId, string privateKey)
{
var rsa = RSA.Create();
rsa.ImportFromPem(privateKey);
var now = DateTimeOffset.Now;
var tokenDescriptor = new SecurityTokenDescriptor
{
Issuer = clientId,
IssuedAt = now.UtcDateTime,
NotBefore = now.UtcDateTime,
Expires = now.AddMinutes(10).UtcDateTime,
SigningCredentials = new(new RsaSecurityKey(rsa), SecurityAlgorithms.RsaSha256)
};
return new JsonWebTokenHandler().CreateToken(tokenDescriptor);
}
var token = CreateJsonWebToken("foo", "bar");
@MatisseHack Ooh, I should probably swap over. I used the library I did because I was going off of the Octokit docs :grimacing:; perhaps we should change those as well?
Good point! I've got nothing against GitHubJwt, but using Microsoft's library is easy enough that it might be wroth switching the recommendation in the docs.
