Connect to Github notification is noisy #1208
Comments
|
Or, at least, add an option "don't show again" or something.. |
|
When are you seeing this? I would only expect it to show once, if you accept, for each machine (since I don't think we sync the auth). And once for each workspace, if you reject. @sandy081 The reason I am showing this notification, is because without it the user just gets an allow authentication access prompt (from the built-in vscode auth) and they wouldn't know why. |
|
Now that I checked, I think one time for each project. |
|
@moshfeu are you rejecting? or accepting? |
|
Rejecting 😳 |
|
Ah, so you want an always reject? Curiously, why don't you want it to connect to GitHub? |
|
For now.. I use to reject requests until I need the feature. Nothing personal :) |
|
No worries, just curious. And FYI, the connection provides many passive features -- GitHub avatars, richer issue linking in hovers, rich PR linking in views, hovers, and annotations. |
|
Thanks! I really like this extension and I'll probably connect Github soon. |
Personally, I opted out once I saw the permissions requested 🤯 |
|
I have the same question. |
|
Hello, experiencing the same. I keep getting notified on each VSC start, and it's irritating. I also find the "Cancel" option (button) confusing, but this is a general UX design problem: does it mean "confirm negative intention" (in this case, don't show warning anymore), or "close widget without applying any change" (in this case, show warning again next time)? Use case: my usage of GitLens is very limited, as I'm a heavy terminal user; additionally, as a general systems administration practice, I don't give permissions to services I don't require. Therefore I don't benefit from authorizing a remote connection. |
|
Yeah, I will definitely be adding a way to completely opt-out soon. Sorry for the inconvenience. |
Thank you for the addon, it's impressive! 😃 |
I think auth feature of VS Code shall be able to handle the UI instead of each extension come up with its own. I would request not to do this (any custom UI or notifications for authentication) instead please raise your concerns with auth feature to handle your request. @RMacfarlane FYI |
|
It's showing every time I open a new workspace for me.
I'm behind a corporate proxy and we use Github Enterprise so i can't use it here. |
The requested authorization is WAY too permissive
This is much different than allowing me to initiate and control actions from my machine (via ssh keys etc) . Wont this generate an authorization that can be used offline, from their servers, without additional consent/initiation? |
|
@MaerF0x0 Unfortunately currently the VS Code authentication APIs (because of limitations with GitHub auth) don't allow for any permission scopes less permissive than what I'm currently asking for (the |
|
Can you please verify this fix in tomorrow's insiders edition? Be sure to disable/uninstall the stable version of GitLens first. You can install the insiders edition from here. I've reworked the notifications a bit to be clearer and added a "don't ask me again" type option. Unfortunately there still is 1 extra notification in certain cases, but that is because of microsoft/vscode#111529. So once that gets fixed I can remove it. |
eamodio
added
the
pending-release
|
@eamodio is it possible that I can generate my own token w/ pared down scopes to provide to the plugin via the settings.json? to be honest I basically use gitlens in a read only fashion -- to see git praise, to check out branches, commit log etc. That way it can only run from my machine too? |
|
I believe so -- during the VS Code auth flow (when it opens the browser window), I believe there is an entry in the statusbar that you can click that will prompt for a PAT. But I don't believe you can create a PAT with any less scopes than I am currently asking for -- because repo info, prs, issues etc are all under the |
|
@eamodio try checking out the personal access token new page, there are lots and lots of options... I understand that vscode may not have the hooks to allow you to generate one for us, but maybe we could just generate a limited access one to use? |
|
Yes, but as I said -- the ONLY scope on that page that lets you get to repository information -- including PR & Issues -- is the |
I raised #1210 for exactly this. It’s not possible for us to use the authentication feature because we’re on enterprise and VSCode takes me to GitHub. Letting me |
|
The VS Code team is trying to auth with GitHub using a GitHub app (rather than tokens) which should offer great granularity in permission requests, but we are currently blocked because of a bunch of technical limitations. So until those get unblocked there isn't much that can be done unfortunately 😢 @jasonwilliams Try the steps here: #1208 (comment) but again your PAT would have to have the |
Is this still only on insiders? |
|
Yeah still only insiders. Should be on stable I the next couple of days. |
Why would I want to connect to GitHub? I can, and have been, using GitLens without connecting to GitHub. The constant prompt is irritating. |
|
Is there a way to connect to GitHub after opting out? |
@pcgeek86 Because of the features the integration enables. I'm glad that you are happy with what you have, but there are plenty of people that want/would benefit from a deeper integration with GitHub. And I 100% agree that the constant prompt is totally aggravating, and I apologize for that (I switched from my own auth to using the vscode auth right before I shipped GitLens 11, and I really needed to do more scenario testing because of those changes). You can use the insiders edition today to get the fix for this, and I will be releasing it to stable very soon. @mikeyhew You can click the Connect to GitHub... link in the hovers, or click on the Connect command for the remote in the Remotes view. |
eamodio
removed
the
pending-release
|
This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
I am always seeing following notification when settings sync install Gitlens
Accounts icon already shows a number badge for this
So not sure if the notification is needed.
The text was updated successfully, but these errors were encountered: