actions/actions-sync
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: actions:v202209260238
Branches Tags
actions:main
actions:v202601271539 actions:v202404231422 actions:v202404051308 actions:v202401161759 actions:v202303192358 actions:v202211070205 actions:v202209261606 actions:v202209260238 actions:v202205310731 actions:v202009231612 actions:v202008101504 actions:v202007141234 actions:v202007131324 actions:v202007021941 actions:v202007021937
..
compare: actions:v202209261606
Branches Tags
actions:main
actions:v202601271539 actions:v202404231422 actions:v202404051308 actions:v202401161759 actions:v202303192358 actions:v202211070205 actions:v202209261606 actions:v202209260238 actions:v202205310731 actions:v202009231612 actions:v202008101504 actions:v202007141234 actions:v202007131324 actions:v202007021941 actions:v202007021937

4 Commits
v202209260 ... v202209261

Author SHA1 Message Date
Ajay
621a30f411 Merge pull request #52 from actions/ajaykn/fix-token-error
Some checks failed
goreleaser / goreleaser (push) Has been cancelled
Details 
Fix the impersonation token error when site_admin scope is missing
 2022-09-26 13:58:39 +09:00
Ajaykn-mac
0ae35c149f fix go lint 2022-09-26 13:28:19 +09:00
Ajaykn-mac
4f5ae77ae9 update readme with moving optional argument 2022-09-26 13:12:54 +09:00
Ajaykn-mac
db79671e1d Fix impersonation token error in case of missing site_admin scope 2022-09-26 12:59:57 +09:00
2 changed files with 5 additions and 5 deletions
Expand all files Collapse all files

8
README.md
View File

@@ -24,8 +24,6 @@ When there are machines which have access to both the public internet and the GH
**Arguments:**
- `actions-admin-user` _(optional)_
The name of the Actions admin user, which will be used for updating the chosen action. To use the default user, pass `actions-admin`. If not set, the impersonation is disabled. Note that `site_admin` scope is required in the token for the impersonation to work.
- `cache-dir` _(required)_
The directory in which to cache repositories as they are synced. This speeds up re-syncing.
- `destination-url` _(required)_
@@ -38,6 +36,8 @@ When there are machines which have access to both the public internet and the GH
A comma-separated list of repositories to be synced. Each entry follows the format of `repo-name`.
- `repo-name-list-file` _(optional)_
A path to a file containing a newline separated list of repositories to be synced. Each entry follows the format of `repo-name`.
- `actions-admin-user` _(optional)_
The name of the Actions admin user, which will be used for updating the chosen action. To use the default user, pass `actions-admin`. If not set, the impersonation is disabled. Note that `site_admin` scope is required in the token for the impersonation to work.
**Example Usage:**
@@ -86,8 +86,6 @@ When no machine has access to both the public internet and the GHES instance:
**Arguments:**
- `actions-admin-user` _(optional)_
The name of the Actions admin user, which will be used for updating the chosen action. To use the default user, pass `actions-admin`. If not set, the impersonation is disabled. Note that `site_admin` scope is required in the token for the impersonation to work.
- `cache-dir` _(required)_
The directory containing the repositories fetched using the `pull` command.
- `destination-url` _(required)_
@@ -96,6 +94,8 @@ When no machine has access to both the public internet and the GHES instance:
A personal access token to authenticate against the GHES instance when uploading repositories. See [Destination token scopes](#destination-token-scopes) below.
- `repo-name`, `repo-name-list` or `repo-name-list-file` _(optional)_
Limit push to specific repositories in the cache directory.
- `actions-admin-user` _(optional)_
The name of the Actions admin user, which will be used for updating the chosen action. To use the default user, pass `actions-admin`. If not set, the impersonation is disabled. Note that `site_admin` scope is required in the token for the impersonation to work.
**Example Usage:**

2
src/push.go
View File

@@ -82,7 +82,7 @@ func GetImpersonationToken(ctx context.Context, flags *PushFlags) (string, error
fmt.Printf("these are the scopes we have for the current token `%s` ...\n", scopesHeader)
if !strings.Contains(scopesHeader, "site_admin") {
return "", errors.Wrap(err, "the current token doesn't have the `site_admin` scope, the impersonation function requires the `site_admin` permission to be able to impersonate.")
return "", errors.New("the current token doesn't have the `site_admin` scope, the impersonation function requires the `site_admin` permission to be able to impersonate")
}
isAE := rootResponse.Header.Get(enterpriseVersionHeaderKey) == enterpriseAegisVersionHeaderValue