Setup
- Create an OAuth App in your GitHub developer settings:
- Application name: your app’s name
- Homepage URL: your app’s URL
- Authorization callback URL: provided by Archie when you select GitHub OAuth
- Copy the Client ID and Client Secret from GitHub.
- In Archie, open Backend → App services → Authentication providers.
- Add or edit the OAuth2 provider with GitHub’s endpoints:
- Authorization URL:
https://github.com/login/oauth/authorize - Token URL:
https://github.com/login/oauth/access_token - User info URL:
https://api.github.com/user - Scopes:
read:user user:email
- Authorization URL:
- Paste the client ID and secret. Save.
What you get
After setup, your app’s sign-in screen shows a “Sign in with GitHub” option. Users authenticate against GitHub; Archie creates or updates the local user record using their GitHub email.Profile mapping
GitHub returns:id— GitHub user ID (use as a stable identifier)email— primary email (requestuser:emailscope to get this when private)login— GitHub usernameavatar_url— profile picture
Errors
The Archie app handles two common error pages:/github-oauth-error— shown when GitHub returns an error or the user cancels/github-setup-complete— shown after a successful repository link or OAuth setup
FAQ
Can I require GitHub OAuth for organization members only?
Can I require GitHub OAuth for organization members only?
Yes — restrict by GitHub organization membership using the
read:org scope and a check during sign-in.Does this affect the project-to-repo connection?
Does this affect the project-to-repo connection?
No. They are separate features even though both use GitHub.
Can I support sign-in with both GitHub and Google?
Can I support sign-in with both GitHub and Google?
Yes. Configure both providers; users can pick at sign-in.