fix: use akuitybot PAT for backport worfklow #2005
Conversation
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
✅ Deploy Preview for docs-kargo-akuity-io ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #2005 +/- ##
=======================================
Coverage 46.23% 46.23%
=======================================
Files 235 235
Lines 16029 16029
=======================================
Hits 7411 7411
Misses 8256 8256
Partials 362 362 ☔ View full report in Codecov by Sentry. |
| @@ -22,7 +22,7 @@ jobs: | |||
| # xref: https://github.com/korthout/backport-action#inputs | |||
| with: | |||
| # Use token to allow workflows to be triggered for the created PR | |||
| github_token: ${{ secrets.GITHUB_TOKEN }} | |||
| github_token: ${{ secrets.AKUITYBOT_PAT }} | |||
There was a problem hiding this comment.
Would permissions.pull-requests: write possibly work?
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
There was a problem hiding this comment.
Oh... nevermind... I was looking at perms at the top of the file. I see this job already has the one I mentioned.
There was a problem hiding this comment.
Oh... this needs to be enabled at the org and repo level. Repo settings are already correct. Perhaps @kencochrane can check if Allow GitHub Actions to create and approve pull requests is checked at the org level.
There was a problem hiding this comment.
Kargo settings:
Org settings:
There was a problem hiding this comment.
@kencochrane were the org settings already like that or did you check that box just now?
There was a problem hiding this comment.
I didn't change any values; that is what it had.
There was a problem hiding this comment.
@kencochrane I have a feeling the repository needs to be added to the allow list of the organization global secret.
There was a problem hiding this comment.
we don't have an AKUITYBOT_PAT org secret on the akuity GitHub organization; we have one on our akuityio organization. That is probably the issue.
There was a problem hiding this comment.
We will have to ask @jessesuen if he can add it since I don't have the AKUITYBOT_PAT value to add it.
This should ensure workflows are properly triggered in all scenarios. Follow up on #1936.