adding permissions to workflow #2984

Poolitzer · 2022-04-28T13:34:47Z

While doing the rewrite of my action today, I stumbled upon a new way to give permissions to action tokens. We had the issue that people who don't have write access to our repo (so those who came from forks) didn't generate tokens with write access to the pull request. This resulted in my action failing with the Resource not accessible by integration error, see Poolitzer/pull/2 or the actual errror https://github.com/Poolitzer/python-telegram-bot/runs/6211635584?check_suite_focus=true or https://github.com/python-telegram-bot/python-telegram-bot/runs/6189881374?check_suite_focus=true.

This was unfixable without exposing a token to the public. But with this new setting, we are all good \o/. See Poolitzer#3.

I see no downside to this change.

Bibo-Joshi

fine with me - merge at will :)

harshil21

nice. I also only see improvements

adding permissions to workflow

8171c85

Poolitzer added the enhancement label Apr 28, 2022

Bibo-Joshi approved these changes Apr 28, 2022

View reviewed changes

harshil21 approved these changes Apr 29, 2022

View reviewed changes

Poolitzer merged commit 66b139b into v14 Apr 29, 2022

Poolitzer deleted the permission_to_workflows branch April 29, 2022 21:49

Bibo-Joshi pushed a commit that referenced this pull request May 6, 2022

adding permissions to workflow (#2984)

d4e1a19

github-actions bot locked and limited conversation to collaborators May 7, 2022

Bibo-Joshi added 🔌 enhancement pr description: enhancement and removed enhancement labels Nov 3, 2024

Provide feedback