Topic: Hide token repo pro to github
Don't know if this is working as i didn't tested it yet, but probably you could use SSH instead of HTTPS by saving an SSH Key in GitLab and just using the following URL in your package.json: git+ssh://git@git.mdbootstrap.com:mdb/angular/ng-uikit-pro-standard.git. This way it should authenticate using your SSH key.
EDIT: Just tested and it worked. Additionally you have to add the SSH fingerprint to your known hosts before, which is done on a Linux system by running $ ssh-keyscan -H git.mdbootstrap.com >> ~/.ssh/known_hosts.
FREE CONSULTATION
Hire our experts to build a dedicated project. We'll analyze your business requirements, for free.
Resolved
- ForumUser: Pro
- Premium support: No
- Technology: MDB React
- MDB Version: 4.22.0
- Device: MacBook
- Browser: safari
- OS: OSX
- Provided sample code: No
- Provided link: No
Piotr Glejzer staff commented 5 years ago
You probably need a private repo to do that.
Sebastien Jarjanette pro commented 5 years ago
@Piotr Glejzer Yes I use private repo but the bots ...? When I talk to token , I talk to token repo pro MDBReact.
Piotr Glejzer staff commented 5 years ago
Oh, sorry about that. Did you buy our product? What email did you add during registration? Best,Piotr
Sebastien Jarjanette pro commented 5 years ago
Yes @Piotr Glejzer I'm a pro user , my git Lab username sebastien.jarjanette@icloud.com
Piotr Glejzer staff commented 5 years ago
We add a PRO label to your profile. I'm a little confused about what you want you to do. May you explain to me better why do you need to hide a token?
You have add token In your development environment when access have only trusted people and remove it when you are putting this on your production.
Sebastien Jarjanette pro commented 5 years ago
Thanks a lot @Piotr Glejzer for the pro label , no just I ask me if it's dangerous to use my token pro in my package.json file ? everybody can see my pro token git Lab ?
Piotr Glejzer staff commented 5 years ago
yes, they can see it if you share it with them. This token is a private token and should be used by you or trusted people who you are working with. If you want to share a package.json file with to the world you have to remove it.