I’m trying to allow users the access to a private repo package published to GitHub packages without having actual access to the repo itself. They should just be able to download the package.
I’m thinking of something like this:
- User authenticates with GitHub (Firebase)
- Within the app, he can generate a token for later access (possible with the GH API?)
- This token needs to be added in the .npmrc file
- The package with the specified scope can now be installed
It’s pretty much like FontAwesome describes it here: Font Awesome
Does this work with GH packages or do I need to use something like Verdaccio?