Clarify that GitHub Apps can access enterprise-owned resources but not the enterprise resource itself (#37591)

Co-authored-by: Hirsch Singhal <1666363+hpsin@users.noreply.github.com>
2025-12-21 10:57:10 -05:00 · 2023-06-06 09:34:59 -07:00
parent a1cefc350f
commit c4db6f9bb2
2 changed files with 2 additions and 2 deletions
--- a/content/apps/creating-github-apps/about-creating-github-apps/deciding-when-to-build-a-github-app.md
+++ b/content/apps/creating-github-apps/about-creating-github-apps/deciding-when-to-build-a-github-app.md
@@ -54,7 +54,7 @@ The rate limit for {% data variables.product.prodname_github_app %}s using an in
 In general, {% data variables.product.prodname_github_app %}s and {% data variables.product.prodname_oauth_app %}s can make the same API requests. However, there are some differences:
 - The REST API to manage check runs and check suites is only available to {% data variables.product.prodname_github_app %}s.
- Enterprise resources are only available to {% data variables.product.prodname_oauth_app %}s.
+- Enterprise-level resources such as the enterprise object itself are not available to {% data variables.product.prodname_github_app %}s. This means that {% data variables.product.prodname_github_app %}s cannot call endpoints like `GET /enterprise/settings/license`. However, enterprise-owned organization and repository resources are available.
 - Some requests may return incomplete data depending on the permissions and repository access that was granted to an {% data variables.product.prodname_github_app %}. For example, if your app makes a request to get all repositories that a user can access, the response will only include the repositories that the app was also granted access to.
 For more information about the REST API endpoints that are available to {% data variables.product.prodname_github_app %}s, see "[AUTOTITLE](/rest/overview/endpoints-available-for-github-apps)."
--- a/content/apps/oauth-apps/building-oauth-apps/differences-between-github-apps-and-oauth-apps.md
+++ b/content/apps/oauth-apps/building-oauth-apps/differences-between-github-apps-and-oauth-apps.md
@@ -30,7 +30,7 @@ Similar to {% data variables.product.prodname_oauth_app %}s, {% data variables.p
 The rate limit for {% data variables.product.prodname_github_app %}s using an installation access token scales with the number of repositories and number of organization users. Conversely, {% data variables.product.prodname_oauth_app %}s have lower rate limits and do not scale.
-There is one case where an {% data variables.product.prodname_oauth_app %} is preferred over a {% data variables.product.prodname_github_app %}. If your app needs to access enterprise resources, you should use an {% data variables.product.prodname_oauth_app %} because a {% data variables.product.prodname_github_app %} cannot yet be given permissions against an enterprise.
+There is one case where an {% data variables.product.prodname_oauth_app %} is preferred over a {% data variables.product.prodname_github_app %}. If your app needs to access enterprise-level resources such as the enterprise object itself, you should use an {% data variables.product.prodname_oauth_app %} because a {% data variables.product.prodname_github_app %} cannot yet be given permissions against an enterprise. {% data variables.product.prodname_github_app %}s can still access enterprise-owned organization and repository resources.
 For more information about {% data variables.product.prodname_github_app %}s, see "[AUTOTITLE](/apps/creating-github-apps/setting-up-a-github-app/about-creating-github-apps)."