Skip to content

Latest commit

 

History

History
31 lines (27 loc) · 2.58 KB

enabling-oauth-app-access-restrictions-for-your-organization.md

File metadata and controls

31 lines (27 loc) · 2.58 KB
Raw
title intro redirect_from versions topics shortTitle
Enabling OAuth app access restrictions for your organization
Organization owners can enable {% data variables.product.prodname_oauth_app %} access restrictions to prevent untrusted apps from accessing the organization's resources while allowing organization members to use {% data variables.product.prodname_oauth_apps %} for their personal accounts.
/articles/enabling-third-party-application-restrictions-for-your-organization
/articles/enabling-oauth-app-access-restrictions-for-your-organization
/github/setting-up-and-managing-organizations-and-teams/enabling-oauth-app-access-restrictions-for-your-organization
/organizations/restricting-access-to-your-organizations-data/enabling-oauth-app-access-restrictions-for-your-organization
fpt ghec
*
*
Organizations
Teams
Restrict {% data variables.product.prodname_oauth_apps %}

{% data reusables.organizations.oauth_app_restrictions_default %}

Even if you restrict {% data variables.product.prodname_oauth_apps %} access in your organization, users can still authorize internal {% data variables.product.prodname_oauth_apps %} and use them to access data from the organization. For more information, see "AUTOTITLE."

Warning

  • Enabling {% data variables.product.prodname_oauth_app %} access restrictions will revoke organization access for all previously authorized {% data variables.product.prodname_oauth_apps %} and SSH keys. For more information, see "AUTOTITLE."
  • Once you've set up {% data variables.product.prodname_oauth_app %} access restrictions, make sure to reauthorize any {% data variables.product.prodname_oauth_app %} that require access to the organization's private data on an ongoing basis. All organization members will need to create new SSH keys, and the organization will need to create new deploy keys as needed.
  • When {% data variables.product.prodname_oauth_app %} access restrictions are enabled, applications can use an OAuth token to access information about {% data variables.product.prodname_marketplace %} transactions.

{% data reusables.profile.access_org %} {% data reusables.profile.org_settings %} {% data reusables.organizations.oauth_app_access %}

  1. Under "Third-party application access policy," click Setup application access restrictions.
  2. After you review the information about third-party access restrictions, click Restrict third-party application access.