New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Draft: Org/Project Auth Tokens #49943
Comments
Closing due to new epic issue |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Background
The reason why we talk about another way to issue auth tokens is, that we want to improve the experience of uploading source maps as much as possible. Improving the way an SDK authenticates, will also improve the overall experience of setting up source map uploads for our users (and maintaining that setup in the time that follows).
User-based Auth Tokens
Currently, we invite users to issue a user-based auth token. This has some negative side effects, as the token may not work anymore (and therefore the entire reporting to Sentry) when that user leaves the organization.
Screenshot of one of our SDK documentations:
Organization-based Auth Tokens
There is also the option to create an Internal Integration - which as the name suggests, leaves many users wondering if this is the right way to setup organization-based (or project-based) authentication/authorisation. Also, integrations weren't initially thought to fulfil this purpose. Issuing organization-based auth tokens is also only possible with a certain level of user account privileges. In a bigger organization with several development teams and projects, relying on an Owner or Manager of the org may not result in a frictionless user experience.
Pros/Cons of existing options
User-based auth tokens
Org-based auth tokens
Open questions
What do we need (what, why, who, until when)
Build a new token system with JWT, any person in the org has permissions to create that kind of token
Who: Alex, Francesco & Riccardo
When: starting on June 1st
Build the user interface changes (view, manage)
Who: Jesse, Ale, Steven (requirements & design), Francesco (UI implementation)
When: Ale & Steven can start on May 31st, Jesse will be there for feedback
Create a helper for generating a token out of docs.sentry.io
Who: Luca
When:
Add token generation to @sentry/wizard?
Who: Luca
When:
Org- instead of user-based tokens for source maps upload
Why:
Who:
When:
Encode "org" and "target" (?) information into the token
Why:
Who:
When:
Other notes
docs.sentry.io
We want to offer an easy way to issue new auth tokens, when reading through a Getting Started SDK tutorial.
wizard in sentry.io
There should also be a way to start (or continue) setting up source maps when you're logged in in sentry.io. This helper should also offer to issue an auth token.
Org based auth tokens
New screen for an overview of already issued auth tokens
New screen to create a new issue
See also
The text was updated successfully, but these errors were encountered: