Using Personal Access Tokens with GitHub and Git

Before beginning, I would point you to the GitHub Documentation on Authentication. Specifically, it is worth looking at the section on authenticating with the command line.

In the section on authenticating with the command line, it describes how to connect via HTTPS. GitHub encourages you to use their GitHub CLI client or the Git Credential Manager to help manage logins. Below I will quickly outline how to use a personal access token to perform the authentication without additional software.

As noted in the GitHub documentation on creating a personal access token, the tokens are effectively sensitive passwords. You don’t want to put them in places where others can get to them. Using a password manager for the token would make some sense or using the GitHub CLI client or the Git Credential Manager mentioned above would reduce some of the security concerns.

Following the information for the link above, I created a "Tokens (classic)" token since they can be used with Git to authenticate over HTTPS. GitHub recommends using an expiration date for a token to limit the damage if it is stolen or otherwise leaked. I used the 90-day token for this example and limited the scope of the token to repo since we are just trying to use Git over HTTPS.

I used a KeePass tool (KeePass, KeePassXC, etc.) to store my personal access token for future use. With a password manager, it will be a little easier to copy the token and use it on the command line then typing it by hand frequently.

At this point, you can clone the repository by going to the repository in GitHub and using the HTTPS URL to access the repository, for example:

You can then modify the repository as usual (git add, git commit, etc.). Then, when you want to git push the repository, it will ask you for your GitHub username and then your GitHub password. For the password, use the recently created GitHub personal token.