GitHub Copilot · Authentication Profile

Github Copilot Authentication

Authentication

GitHub Copilot secures its APIs with http and oauth2 across 2 declared security schemes, as derived from its OpenAPI definitions. OAuth 2.0 is offered via the authorizationCode flow(s).

AgentsAIArtificial IntelligenceCode GenerationCode ReviewCoding AgentCustom InstructionsDeveloper ToolsExtensionsIDEMachine LearningMCPMetricsModel Context ProtocolProductivity
Methods: http, oauth2 Schemes: 2 OAuth flows: authorizationCode API key in:

Security Schemes

BearerToken http
scheme: bearer
OAuthToken oauth2
· flows: authorizationCode

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/github-copilot-openapi.yml
summary:
  types:
  - http
  - oauth2
  oauth2_flows:
  - authorizationCode
schemes:
- name: BearerToken
  type: http
  scheme: bearer
  description: Personal access token (classic) with manage_billing:copilot, read:org, or read:enterprise
    scopes; or fine-grained token with GitHub Copilot Business (read) or Administration (read)
    permissions.
  sources:
  - openapi/github-copilot-openapi.yml
- name: OAuthToken
  type: oauth2
  flows:
  - flow: authorizationCode
    authorizationUrl: https://github.com/login/oauth/authorize
    tokenUrl: https://github.com/login/oauth/access_token
    scopes: 4
  sources:
  - openapi/github-copilot-openapi.yml