check access toke is valid with github action
In Github I have created a personal access token in https://github.com/settings/tokens
Than added it to https://github.com/myrepo/settings/secrets/actions Repository secrets
with full repo rights
I tried to run a renovate bot action
jobs:
renovate:
runs-on: ubuntu-latest
steps:
- name: Show Repo
env:
GH_REPO: ${{ github.repository }}
run: echo "run on $GH_REPO"
- name: Checkout
uses: actions/checkout@v3.5.3
- name: Self-hosted Renovate
env:
REPO_TOKEN: ${{ secrets.RENOVATE_TOKEN }}
uses: renovatebot/github-action@v39.0.1
with:
token: "$REPO_TOKEN"
which fails with
"Authentication failure"
I tried to check with curl
curl -v -H 'Authorization: token <my token>' 'https://github.com/<my-repo>'
but didn't get any insights
Is there a way to actually use that secret in an action (or with curl) to check if it has valid acces for repository maintenance ?
Update:
Since you are using self-hosted renovate bot, you need to set the two envs as well:
RENOVATE_AUTODISCOVER: true
RENOVATE_AUTODISCOVER_FILTER: "renovate-try/*"
When you enable autodiscover, by default, Renovate runs on every repository that the bot account can access. You can limit which repositories Renovate can access by using the autodiscoverFilter config option.
https://docs.renovatebot.com/self-hosted-configuration/#autodiscover
Have fixed your workflow file:
jobs:
renovate:
runs-on: ubuntu-latest
steps:
- name: Show Repo
run: echo "run on ${{ github.repository }}"
- name: Checkout
uses: actions/checkout@v3.5.3
- name: Self-hosted Renovate
uses: renovatebot/github-action@v39.0.1
with:
token: ${{ secrets.RENOVATE_TOKEN }}
I have simplified your workflow yaml file.
Removed the need for
env.REPO_TOKENsince you can directly access thesecrets.RENOVATE_TOKEN. The same forGH_REPO.Fixed your workflow formatting as well.
Another issue might be that your secrets.RENOVATE_TOKEN do not have the necessary permission to do this action.
You need to create a Personal access tokens (classic) here: https://github.com/settings/tokens
You'll need atleast repo:public_repo scope for public repos, and repo scope for private repos.
- Does Mutation Response Data Count As Query Points in GitHub GraphQL API?
- Difference between 'git request-pull' and 'pull request'
- git clone hangs on "Cloning into..." using GitBash
- Referencing a .css file in github repo as stylesheet in a .html file
- Conda install non-python library from github
- Git - case sensitivity issue
- How do I rebase my PR without adding commits to it?
- Delete a workflow from GitHub Actions
- Cannot trigger dispatches from GitHub API
- On-demand self-hosted AWS EC2 runner for GitHub Actions
- How to set `run-name` conditionally in a github workflow
- GitActions - How do I check if the logged in user is part of a team
- How do I use the usethis package when I have already developed an R package on GitHub?
- Can't find GitHub invitation to join repo?
- Meaning of the GitHub message: push declined due to email privacy restrictions
- How to update github token on linux?
- How can I remove a Git branch locally?
- How to sync a specific project folder from my website to my remote website github repository and also a different repository for that project?
- Enable GitHub Dependabot Updates for actions used in Composite actions
- Git/Github: fixing repos history
- GitHub Error Message - Permission denied (publickey)
- Pip requirements syntax highlighting in GitHub markdown
- Can not connect GitHub Copilot to my Visual Studio
- How to embed code from repo in github markdown?
- Azure App Service Deployment Error: "Resource Not Found" for Deployment Slot even if resource exists
- Unable to Deploy Hexo Blog on GitHub Pages
- How do I create a folder in a GitHub repository?
- How to share a calculated value between job steps?
- Multiple templates for Pull Requests on Github
- Trigger GitHub Action with just a URL and process url parameters