added Authorization header if access_token provided (#954)

betatim · web-flow · commit 99af80dc3b70 · 2019-09-20T09:11:57.000+02:00
added  Authorization header if access_token provided
diff --git a/binderhub/repoproviders.py b/binderhub/repoproviders.py
@@ -436,13 +436,13 @@ def _access_token_default(self):
     auth = Dict(
         help="""Auth parameters for the GitHub API access
 
-        Populated from client_id, client_secret, access_token.
+        Populated from client_id, client_secret.
     """
     )
     @default('auth')
     def _default_auth(self):
         auth = {}
-        for key in ('client_id', 'client_secret', 'access_token'):
+        for key in ('client_id', 'client_secret'):
             value = getattr(self, key)
             if value:
                 auth[key] = value
@@ -478,6 +478,10 @@ def github_api_request(self, api_url, etag=None):
             api_url = url_concat(api_url, self.auth)
 
         headers = {}
+        # based on: https://developer.github.com/v3/#oauth2-token-sent-in-a-header
+        if self.access_token:
+            headers['Authorization'] = "token {token}".format(token=self.access_token)
+
         if etag:
             headers['If-None-Match'] = etag
         req = HTTPRequest(api_url, headers=headers, user_agent="BinderHub")
