import { useRouter } from 'next/router' import { useTranslation } from '@/languages/components/useTranslation' import { DEFAULT_VERSION, useVersion } from '@/versions/components/useVersion' import { Link } from '@/frame/components/Link' import { ProgAccessT } from './types' // Documentation paths may be moved around by content team in the future const USER_TOKEN_PATH = '/apps/creating-github-apps/authenticating-with-a-github-app/generating-a-user-access-token-for-a-github-app' const INSTALLATION_TOKEN_PATH = '/apps/creating-github-apps/authenticating-with-a-github-app/generating-an-installation-access-token-for-a-github-app' const FINE_GRAINED_TOKEN_PATH = '/authentication/keeping-your-account-and-data-secure/managing-your-personal-access-tokens#creating-a-fine-grained-personal-access-token' type Props = { progAccess: ProgAccessT slug: string operationTitle: string } export function RestAuth({ progAccess, slug, operationTitle }: Props) { const { currentVersion } = useVersion() const { t } = useTranslation('rest_reference') // This early return can be removed once GHES 3.9 is deprecated // The GHES 3.8 and 3.9 releases don't support fine-grained access tokens if (currentVersion === 'enterprise-server@3.9' || currentVersion === 'enterprise-server@3.8') return null // There are some operations that have no progAccess access defined // For those operations, we shouldn't display this component if (!progAccess) return null const { userToServerRest, serverToServer, fineGrainedPat, basicAuth = false } = progAccess const noFineGrainedAccess = !(userToServerRest || serverToServer || fineGrainedPat) const heading = basicAuth ? t('basic_auth_heading') : t('fine_grained_access') const headingId = heading.replace('{{ RESTOperationTitle }}', operationTitle) const authSlug = basicAuth ? `${slug}--basic-authentication` : `${slug}--fine-grained-access-tokens` return ( <>

{headingId}

{noFineGrainedAccess ? ( ) : ( )} ) } function NoFineGrainedAccess({ basicAuth }: { basicAuth: boolean }) { const { t } = useTranslation('rest_reference') if (basicAuth) return

return

{t('no_fine_grained_access')}

} type FineGrainedProps = { progAccess: ProgAccessT } function FineGrainedAccess({ progAccess }: FineGrainedProps) { const router = useRouter() const { currentVersion } = useVersion() const { t } = useTranslation('rest_reference') // progAccess.permissions is an array of objects // For example: [ {'"Actions" repository permissions': 'read', '"Administration" organization permissions': 'write'}, {'"Secrets" organization permissions"': 'write'} ] // Each object represents a set of permissions containing one // or more key-value pairs. All permissions in a set are required. // If there is more than one set of permissions, any set can be used. const formattedPermissions = progAccess.permissions.map((permissionSet: object, index) => { // Given the example above, the first object is now an array of tuples // [['"Actions" repository permissions', 'read'], ['"Administration" organization permissions', 'read']] // that can be formatted as a string like `"Administration" organization permissions (write)' const permissionSetPairs = Object.entries(permissionSet) const numPermissionSetPairs = permissionSetPairs.length return (
  • {permissionSetPairs.map(([key, value], setIndex) => ( {`${key} (${value})`} {setIndex < numPermissionSetPairs - 1 && and } ))}
    • ) }) let basePath = `/${router.locale}` if (currentVersion !== DEFAULT_VERSION) { basePath += `/${currentVersion}` } // Pluralize the message if needed or customize it // when no permissions are defined const numPermissionSets = progAccess.permissions.length const permissionMsg = numPermissionSets === 0 ? t('no_permission_sets') : numPermissionSets > 1 ? `${t('permission_sets')}:` : `${t('permission_set')}:` const publicAccessMsg = numPermissionSets === 0 ? t('allows_public_read_access_no_permissions') : t('allows_public_read_access') return ( <>

    {t('works_with_fine_grained_tokens')}:

    {permissionMsg}

    {formattedPermissions.length > 0 && } {progAccess.allowsPublicRead &&

    {publicAccessMsg}

    } ) }