improve GitHub actions docs + remove unnecessary warning

intuit · Feb 23, 2021 · 9c1d531 · 9c1d531
1 parent e77a47c
commit 9c1d531
Show file tree

Hide file tree

Showing 2 changed files with 21 additions and 4 deletions.
diff --git a/docs/pages/docs/build-platforms/github-actions.mdx b/docs/pages/docs/build-platforms/github-actions.mdx
@@ -51,7 +51,20 @@ jobs:
 
 ### NPM: Github Package Registry
 
-If you are publishing to the Github Package Registry you will need to change the `NPM_TOKEN` token secret to match the following:
+If you are publishing to the Github Package Registry you will need to change a few things.
+
+1. Modify the node action to use the Github Package Registry and your user scope.
+
+```yml
+- name: Use Node.js 12.x
+  uses: actions/setup-node@v1
+  with:
+    node-version: 12.x
+    registry-url: "https://npm.pkg.github.com"
+    scope: "@your-username-scope"
+```
+
+2. Use the `GITHUB_TOKEN` as the `NODE_AUTH_TOKEN` to publish to the Github Package Registry.
 
 ```yml
 - name: Create Release
@@ -64,7 +77,6 @@ If you are publishing to the Github Package Registry you will need to change the
     npx auto shipit
 ```
 
-This will use your `GITHUB_TOKEN` to publish to the Github Package Registry.
 The `NODE_AUTH_TOKEN` variable is required the `.npmrc` that `actions/setup-node@v1` sets up.
 If you aren't using `actions/setup-node@v1` replace the variable name `NODE_AUTH_TOKEN` with `NPM_TOKEN` and the `.npmrc` `auto` will handle authentication instead.
 
@@ -78,12 +90,14 @@ If you are having problems make sure you have done the following:
 ### Running With Branch Protection
 
 GitHub actions require a little more setup to use `auto` with branch protection.
+We can't use the `GITHUB_TOKEN` to commit to the branch because it does not have high enough permissions.
+You will need to create a token with admin access to your repo and modify your build config like the following:
 
 ```yml
 steps:
   - uses: actions/checkout@v2
     with:
-      # Ensure that git uses your token with write access to the repo
+      # Ensure that git uses your token with admin access to the repo
       token: ${{ secrets.GH_TOKEN }}
 
   - name: Prepare repository

diff --git a/plugins/npm/src/index.ts b/plugins/npm/src/index.ts
@@ -707,7 +707,10 @@ export default class NPMPlugin implements IPlugin {
         return;
       }
 
-      auto.checkEnv(this.name, "NPM_TOKEN");
+      // gh-action + node action uses NODE_AUTH_TOKEN and we should warn about NPM_TOKEN
+      if (!process.env.NODE_AUTH_TOKEN) {
+        auto.checkEnv(this.name, "NPM_TOKEN");
+      }
     });
 
     auto.hooks.getAuthor.tapPromise(this.name, async () => {