Validation Failed for /search/issues for organization private repository with fine-grained token

[lukakerr]

Select Topic Area

Bug

Body

Making a request to:

curl "https://api.github.com/search/issues?q=repo:ORG/REPO+is:pr" -H "Authorization: Bearer github_pat_OWNER_TOKEN"

fails with:

{
  "message": "Validation Failed",
  "errors": [
    {
      "message": "The listed users and repositories cannot be searched either because the resources do not exist or you do not have permission to view them.",
      "resource": "Search",
      "field": "q",
      "code": "invalid"
    }
  ],
  "documentation_url": "https://docs.github.com/v3/search/"
}

The fine-grained token has:

• The "Resource owner" as the ORG specified in the query above
• Access to a single select repository (the ORG/REPO specified)
• The following Repository permissions:
  • Contents (Read-only)
  • Issues (Read-only)
  • Metadata (Read-only)
  • Pull requests (Read-only)
• The following Organization permissions:
  • Members (Read-only)

I believe these permissions are enough for the query to succeed. With a non-fine-grained token this query previously succeeded, but the organization has now mandated fine-grained tokens.

Other org-based queries succeed as expected, for example the following returns a valid response with the ORG/REPO branches listed:

curl "https://api.github.com/repos/ORG/REPO/branches" -H "Authorization: Bearer github_pat_OWNER_TOKEN"

Am I doing something wrong, or is this actually a bug?

[lukakerr]

This seems to have been fixed now.