Blacksmith · OAuth Scopes

Blacksmith OAuth Scopes

OAuth 2.0 derived

Blacksmith uses OAuth 2.0 but publishes no discrete scopes — access is governed by the grant itself (e.g. client-credentials or role-based authorization) rather than per-scope consent.

Tokens are issued from https://github.com/login/oauth/access_token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

CI/CDGitHub ActionsRunnersCachingDocker
Scopes: 0 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://github.com/apps/blacksmith
Token URL
https://github.com/login/oauth/access_token
Flows
authorizationCode

Scopes (0)

Blacksmith implements OAuth 2.0 but publishes no discrete scopes — access is governed by the grant itself (client-credentials or role-based authorization) rather than per-scope consent.

Blacksmith publishes no OAuth scopes - login is exclusively GitHub SSO via the Blacksmith GitHub App, and dashboard access is role-based, inherited directly from GitHub organization/repository permissions rather than granted through scopes (https://docs.blacksmith.sh/blacksmith-administration/permissions).

Source

OAuth Scopes

blacksmith-sh-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/blacksmith-sh-openapi.yml
docs: https://docs.blacksmith.sh/blacksmith-administration/permissions
note: Blacksmith publishes no OAuth scopes - login is exclusively GitHub SSO via
  the Blacksmith GitHub App, and dashboard access is role-based, inherited directly
  from GitHub organization/repository permissions rather than granted through scopes
  (https://docs.blacksmith.sh/blacksmith-administration/permissions).
schemes:
- name: githubApp
  source: openapi/blacksmith-sh-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://github.com/apps/blacksmith
    tokenUrl: https://github.com/login/oauth/access_token
  description: Access to Blacksmith is authorized through the Blacksmith GitHub App installed
    on a GitHub organization, not via a public API key or bearer token. There is no documented
    machine-to-machine API auth scheme.
scopes: []