@abinoda Just to clarify. Do you mean storing the installation id to use at a later time?

You are right. We can save the installation id.

It seems a formal way is explained here: https://developer.github.com/apps/building-github-apps/identifying-and-authorizing-users-for-github-apps/

Basically, we ask user to login and obtain the OAuth access token. We, then, get all the installation ids that the user can access through /user/installations?access_token=…. Then, we can obtain Github app access token from these installation ids.

The problem I have with this approach is, what information needs to be seeded into a containerised deployment. Ideally I'd simply inject the access token, and use that, but the approach suggests I should be inserting the PEM, which is kind of the crown jewels. It also means any daemon application, which might not be specifically designed to talk to github, needs to understand the need to generate a token each/every time it does something. Realistically this means having a sidebar cron job, constantly rejenerating the access token, to keep it current. It all seems overkill. A 24 hour token lifetime, would seem far more sensible. We're seriously considering not using an app, in favour of a svc user, because a personal access token can have the longer expiry, but that seems wrong.