I currently use have an OAuth app and migrating to GitHub App due to better private permissions scope.
I’d like to keep making the requests client-side, with a user token, not server side, to avoid costs.
I currently get the “Resource not accessible by integration” error message.
Could you please enable that? Or suggest me a way to avoid high server bandwidth? Thanks.
Here’s some context, if interested in details:
I’m building DevHub and it relies on these main endpoints: Notifications, Events (/:repo/events, /:org/events, /:user/events, /:user/received_events, …) and getting resource details.
Neither Events nor Notifications are available on api v4, and I really hope they will. (will they?)
So I’m experimenting with migrating the OAuth App to a GitHub App.
The only reason of the migration is better permission granularity. To have access to events from private repositories without having to ask for code/write access, which is crazy (see this issue or this petition).
Finding it more complex than expected (compared to oauth).
Docs are not that clear. (edit: I understood things better after ignoring the official docs and checking the probot lib instead).
I see there is this user-to-server and server-to-server separation.
Could the events/notifications endpoint be made accessible via the user-to-token so I can use it client side?
It would make things much simpler.