OAuth for Artifact uploads

Yurii.Mashtalir · March 5, 2025, 1:52pm

Hi all,

We have a use case where we would want to publish Docker/pypi artifacts to Foundry artifacts repository as part of our Github actions CI. Currently we seem to only be able to achieve that with a personal token. Would it be possible to do this with a Third party application and what would be the scope we’d need for the token?

Thanks,
Yurii
P.S. Can we get an Artifacts tag for this community?

nicornk · March 5, 2025, 4:21pm

This should work with a TPA that is added to the -editor group of your project. When performing the client credentials grant flow do not pass the scope argument and your token will contain all available scopes.

P.s. the better solution is an OIdC trust relationship for TPAs. I am trying since some time to convince Palantir to implement it…