From 5b7aaef4bddd9c81c25ca096a24ac16c762ed46e Mon Sep 17 00:00:00 2001 From: neingeist Date: Sat, 28 Jan 2023 21:48:31 +0100 Subject: [PATCH] =?UTF-8?q?=E2=9A=99=EF=B8=8F=20github:=20use=20GITHUB=5FT?= =?UTF-8?q?OKEN=20to=20authenticate=20to=20ghcr?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .github/workflows/build-image.yml | 19 +++++-------------- 1 file changed, 5 insertions(+), 14 deletions(-) diff --git a/.github/workflows/build-image.yml b/.github/workflows/build-image.yml index e75e0e7..6aa187a 100644 --- a/.github/workflows/build-image.yml +++ b/.github/workflows/build-image.yml @@ -9,6 +9,8 @@ env: jobs: build: runs-on: ubuntu-latest + permissions: + packages: write steps: - uses: actions/checkout@v2.3.3 @@ -22,23 +24,12 @@ jobs: docker tag ${{ github.sha }} ${ENDPOINT}:${{ github.sha }} docker tag ${{ github.sha }} ghcr.io/${ENDPOINT} docker tag ${{ github.sha }} ghcr.io/${ENDPOINT}:${{ github.sha }} - - name: Credential check - if: ${{ github.ref == format('refs/heads/{0}', env.BRANCH) && env.ENDPOINT != 'user/endpoint' }} - run: | - echo "CR_USER=${{ secrets.CR_USER }}" >> $GITHUB_ENV - echo "CR_PAT=${{ secrets.CR_PAT }}" >> $GITHUB_ENV - if [[ "${{ secrets.CR_USER }}" == "" && "${{ secrets.CR_PAT }}" == "" ]]; then - echo "::error::Push credential secrets missing." - echo "::error::You must set CR_USER & CR_PAT as secrets in your repo settings." - echo "::error::See https://github.com/linuxserver/docker-mods/blob/master/README.md for more information/instructions." - exit 1 - fi - name: Login to GitHub Container Registry - if: ${{ github.ref == format('refs/heads/{0}', env.BRANCH) && env.CR_USER && env.CR_PAT && env.ENDPOINT != 'user/endpoint' }} + if: ${{ github.ref == format('refs/heads/{0}', env.BRANCH) && env.ENDPOINT != 'user/endpoint' }} run: | - echo "${{ secrets.CR_PAT }}" | docker login ghcr.io -u ${{ secrets.CR_USER }} --password-stdin + echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }} --password-stdin - name: Push tags to GitHub Container Registry - if: ${{ github.ref == format('refs/heads/{0}', env.BRANCH) && env.CR_USER && env.CR_PAT && env.ENDPOINT != 'user/endpoint' }} + if: ${{ github.ref == format('refs/heads/{0}', env.BRANCH) && env.ENDPOINT != 'user/endpoint' }} run: | docker push ghcr.io/${ENDPOINT}:${{ github.sha }} docker push ghcr.io/${ENDPOINT}