Description
CONTRIBUTING.md asks new contributors to run drone exec. This isn't possible without several API keys, including those of gitea maintainers/owners. None of these keys are mentioned in CONTRIBUTING.md, so it's hard to tell which are for maintainers and which are worth being set up by a contributor. As a result, the process of finding and removing the related stanzas from .drone.yml to try to get drone to run leads the user to inadvertently attempt several maintainer/owner operations, such as pushing new images to dockerhub:
[docker_docs:L341:124s] + /usr/local/bin/docker tag 00000000 gitea/docs:latest [docker_docs:L342:124s] + /usr/local/bin/docker push gitea/docs:latest [docker_docs:L343:124s] The push refers to a repository [docker.io/gitea/docs] [docker_docs:L344:125s] dcb9aa504a9c: Preparing [docker_docs:L345:125s] 97d75450208b: Preparing [docker_docs:L346:125s] 00ce309518aa: Preparing [docker_docs:L347:125s] f295bdb1762a: Preparing [docker_docs:L348:125s] c9e8b5c053a2: Preparing [docker_docs:L349:125s] denied: requested access to the resource is denied [docker_docs:L350:125s] time="2018-05-26T21:13:44Z" level=fatal msg="exit status 1"
See #3977 for related discussion of crowdin, discord, and codecov API keys.
Not sure if the right answer is to modify CONTRIBUTING.md to tell users to run tests individually, add a Makefile stanza to make that easier, or alter the drone run.
To reproduce:
- Log into a new Linux machine or VM where you have none of your maintainer API keys or other credentials installed.
- Follow CONTRIBUTING.md up to and including the part where you run
drone exec. - Remove stanzas from .drone.yml as they fail, mostly due to API keys that you don't have. You'll wind up with something that looks like
drone.yml.gz. - Hit the above
docker pusherror and stop out of concern.