Accessing public pull request data using GitHub App

While moving an OAuth app to a GitHub app, I noticed that some data that is accessible publicly (i.e. without an access token) is not available to users that authenticated with a GitHub app if that app is not installed to the repository in question.

For example, hitting


without an access token works fine, but using an access token returned from gives the following response:

Status: 403 Forbidden

    "documentation_url": "",
    "message": "Resource not accessible by integration"

Is this intentional?

1 Like

Hi @tcdoors,

Thank you for being here! Could you please send us the full output of a curl -v request that demonstrates the problem?

That should help us investigate the issue. Also, please make sure you mask any sensitive information like OAuth tokens and Authorization headers in the output of the curl command. Please send the output to And include a link to this thread to give support some background on the ticket.

I hope this helps!



Hi Andrea,

Thanks for the reply. I’ve forwarded the below information to, but copying here as well:


Steps to reproduce:

1. Accessing the “Get a single repository” endpoint for a public repository works as expected, even if the GitHub app is not installed to that repository:


$ curl -H "Content-Type: application/json" -H "Authorization: bearer $GITHUB_ACCESS_TOKEN" -I
HTTP/1.1 200 OK
  1. However, accessing “List pull requests” endpoint for this repository fails:


$ curl -H "Content-Type: application/json" -H "Authorization: bearer $GITHUB_ACCESS_TOKEN" -I
HTTP/1.1 403 Forbidden
  1. An identical request without authentication completes successfully:

    $ curl -H “Content-Type: application/json” -I
    HTTP/1.1 200 OK

Using an OAuth App (instead of a GitHub App) works as expected.


Was there any resolution to this issue? I’m experiencing a similar problem (with commit data instead of pull request data) and I’m not sure how to go about it.