Differences

This shows you the differences between two versions of the page.

--- gitlabapitoken1 [2025/07/02 16:16] – admin
+++ gitlabapitoken1 [2025/07/09 20:20] (current) – admin
@@ Line 1: / Line 1: @@
-======Personal Access Token======
+======Personal Access Token (PAT)======
-Create a PAT at the Git service where you have an account. It must have permission to create Webhooks along with the ability to create repositories and add Deploy Keys. Enter the PAT here to list repositories, create new ones, and add members.
+Create a PAT at the Git service where you have an account. It must have permission to create Webhooks along with the ability to create repositories and add Deploy Keys. Enter the PAT in the box at the //Manage// page, to list repositories, create new ones, and add/remove members.
 Currently, Git Winch can work with accounts at GitLab, GitHub, Gitea.  You can also self-host Gitlab and Gitea on your own server. Just make sure that the file config.txt and the file .ini file has the correct settings.
@@ Line 9: / Line 9: @@
 And in the .ini file you must make sure that the //GitSys=// must be given one of the 3 values: //Github or Gitea or Gitlab//
-**Encrypted Version of this PAT**\\
+**//You should NEVER EVER share the PAT itself with anyone!//**\\
 Sometimes, an owner may not want to do all the work of creating of a repository and adding/removing members of a repository from within //Git Winch// itself. But instead, the owner may decide to make someone else the manager and make that manager do all that work.
-The problem now is that if the manager is given this PAT directly, that would be a security risk for the owner: The said manager can get free access to the entire Git Host of the owner. Also, the manager may end up sharing that key to someone else who can wreak havoc.
+The problem now is that if the manager is given this PAT directly, that would be a security risk for the owner: The said manager can get free access to the entire Git Host of the owner. Also, the manager may end up sharing that key to someone else who can wreak havoc. **//So, never share a PAT!//**
+**Encrypted Version of this PAT**\\
+//We have a solution on how to delegate work to manager://
+**Right click on this PAT input box** (once you; as an owner, has written the correct PAT in there). //Git Winch// will now encrypt that PAT for you.
+You would be asked for the //username// of the manager you want to delegate work to. The PAT would be encrypted specifically for that manager only and copied to the clipboard.
+Then you (again, assuming you are the owner) can send that encrypted PAT to the manager. By email/Whatsapp/Signal/etc. Do NOT use the chat system inside //Git Winch's web-app// as that is a group chat.
-We have solution: Right click on this PAT edit box, and you would be asked for the //username// of the manager you want to pass on the key to. The PAT would be encrypted specifically for that manager only and copied to the clipboard. Then you can send that encrypted PAT to the manager. The manager, now can use that encrypted key to do the work on behalf of the owner, from inside //Git Winch// The owner is assured that the PAT is reasonably protected and there are now lesser chances that the owner's Git host will be misused.
+The manager, now can use that encrypted key to do the work on behalf of the owner, from inside //Git Winch.// The owner is assured that the PAT is reasonably protected and there are now lesser chances that the owner's Git host will be misused.
 Read more how the [[/encryptedPAT?do=export_xhtml|manager uses this encrypted PAT here]]

Git Winch Guide

Differences

Page Tools