Revoking your credentials

If you believe your account credentials may be compromised, you can revoke all your authorizations to protect any enterprises you have access to. If you are a member of an empresa com usuários gerenciados, you can also choose to delete all your credentials.

Neste artigo

If you believe your account may be compromised, your hardware was lost or stolen, or you otherwise need to immediately revoke all access associated with your account, you can take action on all of your credentials at once to quickly reduce risk.

Depending on your account type, the following actions are available:

  • Revoke all SSO authorizations: Remove your credentials' access to SSO-protected resources in an enterprise. This action removes SSO authorizations but does not delete the credentials themselves.
  • Delete all keys and tokens: Permanently delete all your tokens and SSH keys. This option is available for members of an empresa com usuários gerenciados.

Aviso

These actions are irreversible. Once you revoke authorizations or delete credentials, you cannot restore them. You will need to create new credentials and re-authorize them for any organizations or processes that require access.

Understanding the impact

Before taking action, consider the following:

  • Automations will break: Any scripts, CI/CD pipelines, or automated processes that use your tokens will stop working.
  • Re-authorization required: After revoking SSO authorizations, you will need to create new credentials and authorize them with each organization.
  • SSH access: If you delete your SSH keys, you will need to generate new keys and add them to your account to continue using SSH.

Revoking all SSO authorizations

  1. No canto superior direito de qualquer página do GitHub, clique em sua imagem de perfil e, em seguida, clique em Configurações.
  2. In the "Access" section of the sidebar, click Credentials.
  3. Under "Danger zone", click Revoke all.
  4. From the Enterprise dropdown, select the enterprise where you want to revoke your authorizations.
  5. To confirm, type USERNAME credentials (replacing USERNAME with your username).
  6. Click Revoke authorizations.

Deleting all keys and tokens

You can bulk-delete your credentials if you are a member of an empresa com usuários gerenciados.

  1. No canto superior direito de qualquer página do GitHub, clique em sua imagem de perfil e, em seguida, clique em Configurações.
  2. In the "Access" section of the sidebar, click Credentials.
  3. Under "Danger zone", click Delete all.
  4. To confirm, type USERNAME credentials (replacing USERNAME with your username).
  5. Click Delete keys and tokens.

After revoking or deleting credentials

After taking action on your credentials:

  1. Create new credentials: Generate new personal access tokens and SSH keys as needed. See Gerenciar seus tokens de acesso pessoal and Adicionando uma nova chave SSH à sua conta de GitHub.
  2. Re-authorize for SSO: If your organizations require SSO, authorize your new credentials. See Como autorizar um token de acesso pessoal para uso com logon único and Como autorizar uma chave SSH para uso com logon único.
  3. Update automations: Update any scripts, CI/CD pipelines, or other automated processes with your new credentials.
  4. Review your security: Consider enabling two-factor authentication and reviewing your authorized applications. See Impedir acesso não autorizado.

Further reading