Why The Action Cannot Access Secrets?
I am trying to create a workflow to deploy Nuget packages to Github Package Repository using Github Actions.
In this case,
- The repository is inside an organization
- I am the owner of that organization
- I have admin access to the repository
- The repository has secrets listed
- The commit is mine
- The commit is a direct commit to a branch
But the action CANNOT access the secrets
Below is the workflow I am trying to execute
name: Build and Publish
on:
push:
branches:
- gh-packages
jobs:
build_and_publish:
env:
ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }}
name: Publish Packages to NuGet
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/setup-dotnet@v1
with:
dotnet-version: "3.0.100"
- name: Dump Github Context
env:
CONTEXT: ${{ toJson(github) }}
SECRETS: ${{ toJson(secrets) }}
TOK: ${{ secrets.ACCESS_TOKEN }}
TEST: ${{ secrets.TEST }
run: |
echo $ACCESS_TOKEN
echo $TOK
echo $TEST
echo $GITHUB_TOKEN
echo "$SECRETS"
echo "$CONTEXT"
- name: Setup Config
run: sed "s/ACCESS_TOKEN/$ACCESS_TOKEN/g" .nuget.config > nuget.config
- run: cat nuget.config
- name: Build
run: dotnet build -c Release
- name: Publish
run: chmod +x ./push.sh && ./push.sh
Both GITHUB_TOKEN and custom secrets like ACCESS_TOKEN are not working.
addition 01:
Even when setting the environment variable name as GITHUB_TOKEN doesn't seam to be working
name: Build and Publish
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
...
This problem occurred because of a misunderstanding of mine, which I thought the secret values should show up in the logs if they are passed to the action correctly.
I am combining the answers of Ben Winding and bk2204 to make it clear.
Secret values are scrubbed in action logs. Don't expect to see the actual values in the action logs. Getting the scrubbed text means the value has been passed to the action. you can use the value within the script but you cant see them in the logs. Check Ben's Answer for How you can see the values, but it is not recommended.
- Change the git commit author's email but keep the same commit timestamps
- How can I completely replace a remote repo with a local repo while preserving both commit histories?
- How to upload a local repository to Github
- How to run Spring Boot server in background GH Actions?
- How do I fix "The remote disconnected." on GitHub?
- IntelliJ - Git is not installed: Cannot identify version of git executable: no response
- Images not displaying in Github Pages?
- Using an image caption in Markdown Jekyll
- How can I web scrape GitHub project contributor information in R?
- GitHub Copilot Commands not working and showing error
- Can we upload google sheets api credentials on github?
- Check if local git repo is ahead/behind remote
- Commit file deletions with Laravel package GrahamCampbell/Laravel-GitHub
- Failure to trigger a pipeline from the CircleCI web app as an "Org Admin"
- On GitHub, what's the difference between reviewer and assignee?
- github action expressions - split string
- How to make the output appear in github using jupyter notebook
- How to create environment variable from JSON values in GitHub actions
- How to get my own GitHub events payload json for testing GitHub Actions locally?
- How to remove sensitive data (API_KEY) across git commit history?
- How to determine the user that forked a repo into my organization?
- How to ignore whitespace in github when comparing?
- How to change label for GitHub workflow status badge?
- Github: Import upstream branch into fork
- Can you use an `enum` with an input in GitHub Action's `action.yml` and a workflow file?
- Why is a git 'pull request' not called a 'push request'?
- Bitbucket activity graph
- How to add images to README.md on GitHub?
- Deploying and starting a FastAPI app in Azure Web App
- Public and private packages in GitHub Package Registry