Documentation for GitHub authentication is missing required permissions


In the “Delegating authentication” docs, the part about GitHub authentication is missing some permissions if a user wants to use/reuse a GitHub App (and not an oAuth App).

Permissions are described as “the same as the PR decoration app, then add User > Email (read-only)”. The issue occurs when restricting login to a specific GitHub organization, in which case the permission “Organization > Members (read-only)” is also required. This is not specified in the documentation (and we found out with this Serverfault post).

Could you please add this to the docs? Thank you!

(Side note: are the docs open-source? I wanted to propose a PR before opening this issue ^^)


  • SonarQube 8.2