How to access Maven dependency from Github Packages on a Github Actions workflow?
My build is working locally by using a User + PAT (personal access token) directly on the pom.xml <repository> element:
<repository>
<id>github</id>
<name>GitHub Packages</name>
<url>https://[USER]:[PAT]@maven.pkg.github.com/myaccount/myrepo</url>
</repository>
Downloaded from github: https://[USER]:[PAT]@maven.pkg.github.com/myaccount/myrepo/org/springframework/flex/spring-flex-core/1.6.1.BUILD-SNAPSHOT/maven-metadata.xml (796 B at 592 B/s)
I have no settings.xml configured.
However, it is breaking on a Github Actions workflow:
Warning: Could not transfer metadata org.springframework.flex:spring-flex-core:1.6.1.BUILD-SNAPSHOT/maven-metadata.xml from/to github (***maven.pkg.github.com/myaccount/myrepo): Authentication failed for https://maven.pkg.github.com/myaccount/myrepo/org/springframework/flex/spring-flex-core/1.6.1.BUILD-SNAPSHOT/maven-metadata.xml 401 Unauthorized
Failed to collect dependencies at org.springframework.flex:spring-flex-core:jar:1.6.1.BUILD-SNAPSHOT: Failed to read artifact descriptor for org.springframework.flex:spring-flex-core:jar:1.6.1.BUILD-SNAPSHOT
My workflow is like this:
steps:
- uses: actions/checkout@v2
- name: Set up JDK 1.8
uses: actions/setup-java@v1
with:
java-version: 1.8
- name: Cache Maven packages
uses: actions/cache@v2
with:
path: ~/.m2
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
restore-keys: ${{ runner.os }}-m2
- name: Build with Maven
run: mvn -B package --file dev/server/pom.xml
Why does it break on Github workflow?
Based on your question I suppose:
- You have maven project deployed in
GitHub Package, we call itlibrary - You have another maven project which use the
librarypackage as a dependency in its pom.xml, we call this project as yourapp - You want to add automate build workflow using the
GitHub Actionsinapprepository
If your library is a public package even, currently unfortunately the GitHub dose not support unauthorized access from maven for public packages. Therefore, you should do as follow:
First of all, you need to generate a PAT access token with package-read access in your profile setting, in
developer settingsubsection:
Go to setting section of your
apprepository, and in the subsection ofSecretscreate two environment secrets calledUSER_NAMEwhich the value contains your GitHub username (or username of the owner oflibrarypackage); andACCESS_TOKENpoint to the value of PAT token which created in previous step.Now, create a
maven-settings.xmlin theapprepository, for example you can create it, along side yourworkflow.ymlfile. the file contains:
<?xml version="1.0" encoding="UTF-8"?>
<settings xmlns="http://maven.apache.org/SETTINGS/1.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 http://maven.apache.org/xsd/settings-1.0.0.xsd">
<activeProfiles>
<activeProfile>github</activeProfile>
</activeProfiles>
<profiles>
<profile>
<id>github</id>
<repositories>
<repository>
<id>central</id>
<url>https://repo1.maven.org/maven2</url>
</repository>
<repository>
<id>github</id>
<url>https://maven.pkg.github.com/owner_username/package_name</url>
<snapshots>
<enabled>true</enabled>
</snapshots>
<releases>
<enabled>true</enabled>
</releases>
</repository>
</repositories>
</profile>
</profiles>
<servers>
<server>
<id>github</id>
<username>${env.USER_NAME}</username>
<password>${env.ACCESS_TOKEN}</password>
</server>
</servers>
</settings>
- And, finally use these setting file, in the workflow when run the maven command. for example the
workflow.yamlfile can contain:
name: Java CI with Maven
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Set up JDK 8
uses: actions/setup-java@v2
with:
java-version: '8'
distribution: 'adopt'
- name: Build with Maven
run: mvn -s $GITHUB_WORKSPACE/.github/workflows/maven-settings.xml -B package --file pom.xml
env:
USER_NAME: ${{ secrets.USER_NAME }}
ACCESS_TOKEN: ${{ secrets.ACCESS_TOKEN }}
- repository element was not specified in the POM inside distributionManagement element or in -DaltDep loymentRepository=id::layout::url parameter
- How to package org.eclipse.swt into the project jar
- maven can't add files in generated-sources for compilation phase
- How to suppress Mavens INFO spam without suppressing normal output?
- "A required class was missing while executing org.apache.maven.plugins:maven-help-plugin:3.4.0:effective-pom" when tyrying to update Jira plugin
- Maven plugins can not be found in IntelliJ
- Maven ignore custom local repository
- Dependency report for tycho based build
- How to create a maven dependency and use it in Spring boot
- settings.xml when running owasp dependency check from CLI
- XSLT Document function returns empty result on Maven POM
- How do I load a file from resource folder?
- Sonarqube: Missing blame information for the following files
- How to specify maven properties in a aggregator POM?
- The simplest way to create a jar file?
- Porting Weblogic T3 RMI client to Java 17
- Android kotlin Failed to upload the mavne configured for all submodules in the root directory configuration, name 'release' not found
- repository tag under distributionManagement vs repositories?
- Including specific transitive dependencies in Maven
- Cucumber JUnit 5 mvn - no tests were found
- Make maven's surefire show stacktrace in console
- no new branch appearing on sonar
- Cucumber cannot be resolved to a type. @RunWith(Cucumber.class)
- Simplest way to generate version string for Maven package from Git branch
- Error creating bean with name 'entityManagerFactory' with SpringBoot 3
- Using Kotlin class in Java: Cannot find symbol
- Is there any Apache Click maven archtype similar to Wicket's?
- Maven Surefire test failed: Unsupported class file major version 61
- Maven Jetty - do not reload the whole application when modifying only static files
- Spring Boot - Java Mail - Couldn't connect to host