Comments (3)
Worked out what the issue was. The GITHUB_TOKEN
needed additional permissions (read/write) in Settings > Actions > General > Workflow Permissions (or could be done more granularly in the Workflow YAML). May be worth updating the docs to include this?
I was also wondering if you felt this workflow was still relevant in light of this feature: https://docs.github.com/en/actions/managing-workflow-runs/approving-workflow-runs-from-public-forks
EDIT: answering my own question, I think it is still relevant because it means that you can control access to integrations tests that may cost more money separately to all other actions / workflows / tests that you may have in the repository.
from ok-to-test.
The documentation of this workflow is out of date, as you #21 (comment)! Would you be willing to open a separate PR for that? 🙏
Sure. I'll adjust the docs to mention the GITHUB_TOKEN permissions. I'll also explicitly mention that it is ok to use 'example.com' type urls when creating the GitHub app. When I was creating my app, I wasn't sure that it would be ok to use URLs that didn't resolve, or that I didn't own. I noticed #12 also referenced this, so thought it may be worth bulking the docs out a bit on this if that is OK?
from ok-to-test.
Thanks for the issue report and PR! 😍
I think a couple of things are going on:
- The built-in
GITHUB_TOKEN
's defaults were recently changed to read-only, so explicitwrite
permissions are helpful in the workflow, as you indicate here (or the defaults could be set at the enterprise, organization, or repo level).GITHUB_TOKEN
is technically a special GitHub App installation access token generated by GitHub Actions but is unrelated to the other installation access token we generate here and optionally use here. - The documentation of this workflow is out of date, as you also indicate! Would you be willing to open a separate PR for that? 🙏
from ok-to-test.
Related Issues (12)
- Question HOT 1
- Bug: grab sha sooner or as argument
- Example integration HOT 8
- Using personal access token HOT 4
- Using Oauth App Token HOT 3
- Having difficulty knowing how to set up the GitHub App HOT 2
- Explain actions/checkout for forked PRs vs normal PRs HOT 3
- Unhandled error: TypeError: Cannot read property 'get' of undefined HOT 4
- Dispatched actions don't associate with PR checks HOT 6
- See explicit logs in original workflow run HOT 7
- Is the trusted action template vulnerable with a merge from the upstream repository? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ok-to-test.