kneemaa
commented
3 years ago @TrashManTrashCans have you double checked that the User with the PAT token has Admin permissions to the repository it wants to update?
Closed TrashManTrashCans closed 3 years ago
kneemaa
commented
3 years ago @TrashManTrashCans have you double checked that the User with the PAT token has Admin permissions to the repository it wants to update?
TrashManTrashCans
commented
3 years ago @kneemaa Yes, the PAT token has admin permissions. I think the issue is that the code here is hard coded to write to the root of the GitHub secrets for the repo, like line 134 here. The secrets Environment feature sort of acts as a DIR within the root secrets repo and I think would require some sort of logic for the rotation action to work with it.
When trying to rotate credentials stored in the new GitHub Environments, the action can read the secrets out of the Environment and do the necessary actions on the AWS side but when writing values it writes into the Repository secrets.