Git Push Authentication#

What Was Established#

• GitHub deprecated password authentication for Git over HTTPS. Even if passwords worked previously, they are now rejected with password not supported.
• Personal Access Tokens (PAT) or SSH keys are required for authentication.
• 403 Permission Denied errors typically indicate stale cached credentials or insufficient token scopes.

Key Decisions#

• Use Personal Access Tokens (PAT) for HTTPS Git operations.
• Classic tokens require the repo scope for private repositories.
• Fine-grained tokens require Contents (Read and write) and Metadata (Read) permissions, explicitly scoped to the target repository.

Current Configuration#

• GitHub Username: NK-Iluvatar
• Target Repository: MBTADashboard
• Remote URL: https://github.com/NK-Iluvatar/MBTADashboard.git

Historical Notes#

• Password Deprecation: GitHub enforced its 2021 policy change retroactively, blocking account passwords for Git operations over HTTPS.
• 403 Troubleshooting: Resolved by clearing cached credentials (git credential reject or OS credential manager) and verifying token scopes (repo for classic, Contents for fine-grained).
• Token Testing: Verified token validity using curl -H "Authorization: token TOKEN" https://api.github.com/user.

Open Questions#

• None.

Related Pages#

• Git Pull Strategies
• Homelab Dashboard

Sources#

• DeepSeek conversation (2026-02-18) regarding MBTADashboard push failures and PAT configuration.