From 258ecdfa13b2f19e03dbcdc53af6acb2f80b1d1a Mon Sep 17 00:00:00 2001 From: Gerald Morrison <67469729+morri-son@users.noreply.github.com> Date: Thu, 6 Feb 2025 10:32:13 +0100 Subject: [PATCH] fix: use app token because of PR / branch protection (#1283) #### What this PR does / why we need it For issues the GITHUB_TOKEN is sufficient: https://github.com/open-component-model/ocm/actions/runs/13160047944/job/36726209427. For PRs the branch protection comes in place and the action fails: https://github.com/open-component-model/ocm/actions/runs/13160047944/job/36726209427 Therefore we need to use the github app token from the ocm bot. --- .github/workflows/milestone.yaml | 10 ++++++++-- 1 file changed, 8 insertions(+), 2 deletions(-) diff --git a/.github/workflows/milestone.yaml b/.github/workflows/milestone.yaml index 9137df0b3..0dd59d632 100644 --- a/.github/workflows/milestone.yaml +++ b/.github/workflows/milestone.yaml @@ -14,13 +14,19 @@ jobs: issues: write pull-requests: write steps: + - name: Generate token + id: generate_token + uses: tibdex/github-app-token@v2 + with: + app_id: ${{ secrets.OCMBOT_APP_ID }} + private_key: ${{ secrets.OCMBOT_PRIV_KEY }} - name: Set milestone on issue if: github.event.issue.state_reason == 'completed' run: gh issue edit ${{ github.event.issue.number }} --milestone "$(date +"%Y-Q%q")" --repo ${{ github.repository }} env: - GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GH_TOKEN: ${{ steps.generate_token.outputs.token }} - name: Set milestone on pull request if: github.event.pull_request.merged == true run: gh pr edit ${{ github.event.pull_request.number }} --milestone "$(date +"%Y-Q%q")" --repo ${{ github.repository }} env: - GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GH_TOKEN: ${{ steps.generate_token.outputs.token }} # For PRs and branch protection the standard GITHUB_TOKEN is not sufficient \ No newline at end of file