From 7422dc8e1e54c5ff7005fbc905dc326b9b04178f Mon Sep 17 00:00:00 2001
From: Chris McIntosh <Chocrates@github.com>
Date: Tue, 8 Aug 2023 14:46:35 -0500
Subject: [PATCH] Update README.md

---
 generate-jwt-key/README.md | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/generate-jwt-key/README.md b/generate-jwt-key/README.md
index cb6fad3..b8a0aa6 100644
--- a/generate-jwt-key/README.md
+++ b/generate-jwt-key/README.md
@@ -6,21 +6,29 @@ See [the docs](https://docs.github.com/en/developers/apps/authenticating-with-gi
 ```
 npm install
 node generate-jwt-key.js --private-key /path/to/key
-curl -i -H "Authorization: Bearer $(node generate-jwt-key.js --private-key /path/to/key)" -H "Accept: application/vnd.github.v3+json" https://api.github.com/app
+curl -i -H "Authorization: Bearer $(node generate-jwt-key.js -i <app id> --private-key /path/to/key)" -H "Accept: application/vnd.github.v3+json" https://api.github.com/app
 ```
 
 ## Get Installation token flow
 ### Get Installations
 ```
-curl -i -H "Authorization: Bearer $(node generate-jwt-key.js --private-key /path/to/key)" -H "Accept: application/vnd.github.v3+json" https://api.github.com/app/installations
+curl -i -H "Authorization: Bearer $(node generate-jwt-key.js -i <app id> --private-key /path/to/key)" -H "Accept: application/vnd.github.v3+json" https://api.github.com/app/installations
 ```
 
 ### Get Token
 ```
-curl -i -H "Authorization: Bearer $(node generate-jwt-key.js --private-key /path/to/key)" -H "Accept: application/vnd.github.v3+json" https://api.github.com/app/installations/<installation id>/access_tokens
+curl -L \
+  -X POST \
+  -H "Accept: application/vnd.github+json" \
+  -H "Authorization: Bearer $(node generate-jwt-key.js -i <app id> -p /path/to/key)" \
+  -H "X-GitHub-Api-Version: 2022-11-28" \
+  https://api.github.com/app/installations/<installation_id>/access_tokens \
+  -d '{"repository":"<repo-name>","permissions":{"contents":"read"}}'
 ```
+*Note:* Permissions JSON object must match [these properties](https://docs.github.com/en/rest/apps/apps?apiVersion=2022-11-28#create-an-installation-access-token-for-an-app-permissions-object) and your App must be granted the scopes you requested
+
 
 ### Use Token like a PAT
 ```
-curl -i -H "Authorization: Bearer <token>" -H "Accept: application/vnd.github.v3+json" https://api.github.com/user
+curl -i -H "Authorization: Bearer <installation_token>" -H "Accept: application/vnd.github.v3+json"   https://api.github.com/repos/OWNER/REPO
 ```