Sourcegraph Doesn't Respect Repo Visibility Rules For GitHub Enterprise

[alexAtSourcegraph]

• Sourcegraph version: 5.1.8
• Platform information: All Sourcegraph Platforms

Steps to reproduce:

1. Generate a personal access token for a user in GitHub Enterprise Server that is an Enterprise Member as defined here
2. Use the personal access token to create a code host connection in Sourcegraph.
3. Choose the "affiliated" repositoryQuery to specify what repositories the user has access to.

Expected behavior:

The use of the personal access token of an Enterprise Member as well as using the repositoryQuery key and affiliated value would pull in all of the public repositories in a GitHub Enterprise Server instance (regardless if the user belonged to an organization) as well as all of the internal repositories in addition to the private repositories it should have access to. This behavior is based on the repo visibility rules expressed by GitHub Enterprise here.

Actual behavior:

Sourcegraph currently only pulls in the public repos on the instance that do not belong to an organization, public repos that belong to the organizations that the user is in and private repositories that the user has been given explicit access to.

/cc @sourcegraph/source

[alexAtSourcegraph]

+1 for https://github.com/sourcegraph/accounts/issues/8762