🏭 🚿 Automatically refreshing GitHub App tokens with Javascript Required class initialization parameters meta . pem , meta . app_id , meta . installation_id Example Javascript Auth Class const { App } = require ( "@octokit/app" ) ;
const { request } = require ( "@octokit/request" ) ;
const fs = require ( 'fs' ) ;
const yaml = require ( 'js-yaml' ) ;
class GitHubAPIAuth {
constructor ( meta ) {
this . meta = meta ;
this . private_key = fs . readFileSync ( 'private_key.pem' , 'utf8' ) ;
this . app = new App ( { id : this . meta . app_id , privateKey : this . private_key } )
}
get auth ( ) {
return new Promise ( success => {
this . accessToken == undefined || new Date ( ) + 60 >= this . expiresAt ?
this . github_app . then ( success ) :
success ( )
} ) ;
}
get token ( ) {
return request ( "POST /app/installations/:installation_id/access_tokens" , {
installation_id : this . meta . installation_id ,
headers : {
accept : "application/vnd.github.machine-man-preview+json" ,
authorization : `bearer ${ this . app . getSignedJsonWebToken ( ) } ,
} ,
} )
}
get github_app ( ) {
return this . token
. then ( response => {
this . accessToken = response . data . token ;
this . expiresAt = new Date ( response . data . expires_at ) ;
return ;
} )
}
}
class GitHubAPI extends GitHubAPIAuth {
repos ( callback ) {
return this . auth
. then ( _ => {
return request ( {
method : 'GET' ,
url : '/orgs/:org/repos' ,
org : this . meta . name ,
headers : {
authorization : `token ${ this . accessToken } ,
accept : "application/vnd.github.machine-man-preview+json" ,
} ,
} )
. then ( callback ) ;
} )
}
}
yaml . safeLoad ( fs . readFileSync ( '.config.yml' , 'utf8' ) ) . orgs . forEach ( meta => {
new GitHubAPI ( meta ) . repos ( repos => {
console . log ( `- REPO OBJECT: ${ repos . data [ 0 ] . full_name } ) ;
} ) ;
} ) ;