Description
Hey, not sure if I'm doing something wrong, but it seems that the devtunnel CLI fails to request the read:org scope during the GitHub login handshake. As the CLI apparently receives a token without this scope, it cannot verify organization membership, making it impossible to use the --org flag even when the Dev Tunnels GitHub App is correctly installed in the organization.
Steps to Reproduce
- Install the Dev Tunnels GitHub App in that organization as per the official documentation (I can verify that the GitHub App is installed):
- Run
devtunnel user login -g in the terminal
- Note: the "Organization access" section is missing, preventing the user from "Granting" access to the org.
- Verify that it's installed in my GitHub user
- Attempt to host a tunnel with org access:
$ devtunnel host -p 8080 --org <org-name>.
Error: Tunnel service error: Request not permitted. GitHub token is missing required scope: read:org.
Expected Behavior
The GitHub token should have the read:org scope. Presumably I suppose the CLI should request the read:org scope by default during user login -g.
Environment
$ devtunnel --version
Tunnel CLI version: 1.0.1516+7e996fe917
Tunnel service URI : https://global.rel.tunnels.api.visualstudio.com/
Tunnel service version : 1.0.1632.58633 (e50901f950; 2026-03-02 17:39:11Z)
Tunnel service cluster : brs
OS: macOS 15.7.2
Description
Hey, not sure if I'm doing something wrong, but it seems that the devtunnel CLI fails to request the
read:orgscope during the GitHub login handshake. As the CLI apparently receives a token without this scope, it cannot verify organization membership, making it impossible to use the--orgflag even when the Dev Tunnels GitHub App is correctly installed in the organization.Steps to Reproduce
devtunnel user login -gin the terminalExpected Behavior
The GitHub token should have the read:org scope. Presumably I suppose the CLI should request the read:org scope by default during user login -g.
Environment
OS: macOS 15.7.2