| CARVIEW |
Select Language
HTTP/2 301
server: GitHub.com
content-type: text/html
location: https://docs.github.com/apps/
x-github-request-id: B0EC:102399:22485:27964:68EFD71F
accept-ranges: bytes
age: 0
date: Wed, 15 Oct 2025 17:17:21 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210089-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1760548641.225638,VS0,VE272
vary: Accept-Encoding
x-fastly-request-id: 6e367ce7102ca6f5160358226407c39042b739f0
content-length: 162
HTTP/2 301
access-control-allow-origin: *
content-security-policy: default-src 'none';prefetch-src 'self';connect-src 'self';font-src 'self' data:;img-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com data: placehold.it;object-src 'self';script-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' data: 'unsafe-inline';script-src-attr 'self';frame-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com https://support.github.com https://www.youtube-nocookie.com;frame-ancestors 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com;style-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' 'unsafe-inline' data:;child-src 'self';manifest-src 'self';upgrade-insecure-requests;base-uri 'self';form-action 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=60
location: /apps
content-type: text/plain; charset=utf-8
x-github-backend: Kubernetes
x-github-request-id: F105:161181:1798AE:1BE823:68EFD722
accept-ranges: bytes
age: 0
date: Wed, 15 Oct 2025 17:17:22 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210040-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1760548642.558638,VS0,VE1217
vary: Accept
strict-transport-security: max-age=31557600
content-length: 39
HTTP/2 302
access-control-allow-origin: *
content-security-policy: default-src 'none';prefetch-src 'self';connect-src 'self';font-src 'self' data:;img-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com data: placehold.it;object-src 'self';script-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' data: 'unsafe-inline';script-src-attr 'self';frame-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com https://support.github.com https://www.youtube-nocookie.com;frame-ancestors 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com;style-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' 'unsafe-inline' data:;child-src 'self';manifest-src 'self';upgrade-insecure-requests;base-uri 'self';form-action 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=60
location: /en/apps
content-type: text/plain; charset=utf-8
x-github-backend: Kubernetes
x-github-request-id: 151B:11C685:183646:1C8238:68EFD723
accept-ranges: bytes
age: 0
date: Wed, 15 Oct 2025 17:17:25 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210040-BOM
x-cache: MISS
x-cache-hits: 0
x-timer: S1760548643.789497,VS0,VE2462
vary: accept-language, x-user-language, Accept
strict-transport-security: max-age=31557600
content-length: 30
HTTP/2 200
access-control-allow-origin: *
content-security-policy: default-src 'none';prefetch-src 'self';connect-src 'self';font-src 'self' data:;img-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com data: placehold.it;object-src 'self';script-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' data: 'unsafe-inline';script-src-attr 'self';frame-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com https://support.github.com https://www.youtube-nocookie.com;frame-ancestors 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com;style-src 'self' github.com *.github.com *.githubusercontent.com *.githubassets.com 'self' 'unsafe-inline' data:;child-src 'self';manifest-src 'self';upgrade-insecure-requests;base-uri 'self';form-action 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=60
x-powered-by: Next.js
content-type: text/html; charset=utf-8
x-github-backend: Kubernetes
x-github-request-id: CF83:3E282D:72FB9C:82ACDE:68EFCBD5
content-encoding: gzip
accept-ranges: bytes
age: 2895
date: Wed, 15 Oct 2025 17:17:25 GMT
via: 1.1 varnish
x-served-by: cache-bom-vanm7210040-BOM
x-cache: HIT
x-cache-hits: 0
x-timer: S1760548645.264926,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 25954
GitHub Apps documentation - GitHub Docs
Skip to main content
GitHub Docs
Search or ask Copilot
Select language: current language is English
Search or ask Copilot
Open menu
Open Sidebar
GitHub Apps documentation
Go deeper with GitHub by integrating with our APIs and webhooks, customizing your GitHub workflow, and building and sharing apps with the community.
Start here
About using GitHub Apps
Learn about what a GitHub App is and why you would use a GitHub App.
About creating GitHub Apps
GitHub Apps let you build integrations to automate processes and extend GitHub's functionality.
Differences between GitHub Apps and OAuth apps
In general, GitHub Apps are preferred to OAuth apps because they use fine-grained permissions, give more control over which repositories the app can access, and use short-lived tokens.
About authentication with a GitHub App
Your GitHub App can authenticate as itself, as an app installation, or on behalf of a user.
Popular
Registering a GitHub App
You can register a GitHub App under your personal account or under any organization you own.
Authorizing GitHub Apps
You can authorize a GitHub App to retrieve information about your GitHub account and to make changes on your behalf.
Building a GitHub App that responds to webhook events
Learn how to build a GitHub App that makes an API request in response to a webhook event.
Building a "Login with GitHub" button with a GitHub App
Follow this tutorial to write Ruby code to generate a user access token via the web application flow for your GitHub App.
Building a GitHub App that responds to webhook events
Learn how to build a GitHub App that makes an API request in response to a webhook event.
Building a "Login with GitHub" button with a GitHub App
Follow this tutorial to write Ruby code to generate a user access token via the web application flow for your GitHub App.
Building a CLI with a GitHub App
Follow this tutorial to write a CLI in Ruby that generates a user access token for a GitHub App via the device flow.
Making authenticated API requests with a GitHub App in a GitHub Actions workflow
You can use an installation access token from a GitHub App to make authenticated API requests in a GitHub Actions workflow. You can also pass the token to a custom action to enable the action to make authenticated API requests.
Using GitHub Apps
- About using GitHub Apps
- Installing a GitHub App from GitHub Marketplace for your personal account
- Installing a GitHub App from GitHub Marketplace for your organizations
- Installing a GitHub App from a third party
- Installing your own GitHub App
- Requesting a GitHub App from your organization owner
- Authorizing GitHub Apps
- Approving updated permissions for a GitHub App
- Reviewing and revoking authorization of GitHub Apps
- Reviewing and modifying installed GitHub Apps
- Privileged GitHub Apps