Skip to content

Commit

Permalink
Move back to tokens
Browse files Browse the repository at this point in the history 
- Reusable workflows can't use trusted publishing yet: pypa/gh-action-pypi-publish#166
  • Loading branch information
@virtuald
virtuald committed Nov 1, 2023
1 parent 3270e7f commit 15c0325
Show file tree
Hide file tree
Showing 3 changed files with 15 additions and 11 deletions.
14 changes: 5 additions & 9 deletions .github/workflows/package-ci.yml
View file
Expand Up @@ -41,12 +41,6 @@ on:
default: 'main'
type: string
secrets:
SSH_USER:
description: User to SFTP as
SSH_KEY:
description: Private key
SSH_PASSPHRASE:
description: Decryption passphrase for private key
META_REPO_ACCESS_TOKEN:
description: Token to use to trigger bump workflow on robotpy-meta
RTD_TOKEN:
Expand All @@ -57,6 +51,8 @@ on:
description: Username to upload to artifactory
WPI_ARTIFACTORY_TOKEN:
description: Token to use to upload to artifactory
PYPI_API_TOKEN:
description: Token to publish the package to PyPI

concurrency:
group: ${{ github.ref }}
Expand Down Expand Up @@ -282,8 +278,6 @@ jobs:
publish-pypi:
runs-on: ubuntu-latest
needs: [check, build, cross-build]
permissions:
id-token: write
if: github.event_name == 'push' && startsWith(github.event.ref, 'refs/tags')

steps:
Expand Down Expand Up @@ -335,7 +329,9 @@ jobs:
- name: Publish to PyPI
uses: pypa/gh-action-pypi-publish@release/v1
with:
verify-metadata: false
user: __token__
password: ${{ secrets.PYPI_API_TOKEN }}
verify_metadata: false

ping-rtd:
runs-on: ubuntu-latest
Expand Down
6 changes: 5 additions & 1 deletion .github/workflows/package-hal-extension.yml
View file
Expand Up @@ -6,6 +6,8 @@ on:
secrets:
META_REPO_ACCESS_TOKEN:
description: Token to use to trigger bump workflow on robotpy-meta
PYPI_API_TOKEN:
description: Token to publish the package to PyPI


jobs:
Expand Down Expand Up @@ -86,7 +88,9 @@ jobs:
- name: Publish to PyPI
uses: pypa/gh-action-pypi-publish@release/v1
with:
verify-metadata: false
user: __token__
password: ${{ secrets.PYPI_API_TOKEN }}
verify_metadata: false

# - uses: robotpy/build-actions/ping-meta@v2024
# with:
Expand Down
6 changes: 5 additions & 1 deletion .github/workflows/package-pure.yml
View file
Expand Up @@ -12,6 +12,8 @@ on:
secrets:
META_REPO_ACCESS_TOKEN:
description: Token to use to trigger bump workflow on robotpy-meta
PYPI_API_TOKEN:
description: Token to publish the package to PyPI


jobs:
Expand Down Expand Up @@ -95,7 +97,9 @@ jobs:
- name: Publish to PyPI
uses: pypa/gh-action-pypi-publish@release/v1
with:
verify-metadata: false
user: __token__
password: ${{ secrets.PYPI_API_TOKEN }}
verify_metadata: false

# - uses: robotpy/build-actions/ping-meta@v2024
# with:
Expand Down

0 comments on commit 15c0325

Please sign in to comment.