Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove the need for an ADMIN_GITHUB_TOKEN #557

Merged
merged 11 commits into from
Mar 4, 2024
Merged

Remove the need for an ADMIN_GITHUB_TOKEN #557

merged 11 commits into from
Mar 4, 2024

Conversation

blink1073
Copy link
Contributor

@blink1073 blink1073 commented Feb 24, 2024
edited
Loading

Fixes #505.

  • Create GitHub Apps for Jupyter Server, JupyterLab, and IPython orgs (Jupyter was already done for nbconvert)
  • Update this repo to use the app for self releases
  • Update self release workflows
  • Update example workflows
  • Update documentation to mention GitHub Apps and Rulesets instead of Admin tokens

@blink1073 blink1073 added the enhancement New feature or request label Feb 24, 2024
@blink1073 blink1073 marked this pull request as ready for review February 25, 2024 13:59
@jtpio
Copy link
Member

jtpio commented Feb 26, 2024

Nice, thanks!

jtpio
jtpio reviewed Feb 26, 2024
View reviewed changes
example-workflows/prep-release.yml Outdated
# description: "Set a placeholder in the changelog and don't publish the release."
# required: false
# type: boolean
silent:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

iirc this was left commented so that the input does not show up in the UI as this is more of an advanced feature (discussed in #526)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Okay fair, I'll comment it out

@blink1073 blink1073 requested a review from jtpio February 26, 2024 12:10
fcollonval
fcollonval requested changes Feb 26, 2024
View reviewed changes
Copy link
Member

@fcollonval fcollonval left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks a lot @blink1073

I have some minor questions and suggestions.

example-workflows/full-release.yml
Comment on lines -63 to -66
# The following are needed if you use legacy PyPI set up
# PYPI_TOKEN: ${{ secrets.PYPI_TOKEN }}
# PYPI_TOKEN_MAP: ${{ secrets.PYPI_TOKEN_MAP }}
# TWINE_USERNAME: __token__
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we keep this for now as we don't remove legacy PyPI publication yet?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think having it in the docs is enough, new projects should be using Trusted Publishing.

example-workflows/publish-release.yml
Comment on lines -37 to -40
# The following are needed if you use legacy PyPI set up
# PYPI_TOKEN: ${{ secrets.PYPI_TOKEN }}
# PYPI_TOKEN_MAP: ${{ secrets.PYPI_TOKEN_MAP }}
# TWINE_USERNAME: __token__
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same comment

docs/source/how_to_guides/convert_repo_from_repo.md Outdated Show resolved Hide resolved
docs/source/how_to_guides/convert_repo_from_repo.md

<details><summary>Using PyPI token (legacy way)</summary>
- [ ] Create a "release" [environment](https://docs.github.com/en/actions/deployment/targeting-different-environments/using-environments-for-deployment) on your repository and add an `APP_ID` Environment Variable and `APP_PRIVATE_KEY` secret.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we advice to allow that environment only on protected branches?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good catch, updated

blink1073 and others added 2 commits February 27, 2024 22:06
blink1073

This comment was marked as outdated.

Sign in to view

@blink1073 blink1073 mentioned this pull request Mar 3, 2024
Merged
@blink1073
Copy link
Contributor Author

I need to merge and iterate so I can release.

@blink1073 blink1073 enabled auto-merge (squash) March 4, 2024 16:11
@blink1073 blink1073 disabled auto-merge March 4, 2024 16:11
@blink1073 blink1073 merged commit a349a20 into jupyter-server:main Mar 4, 2024
19 checks passed
@blink1073 blink1073 deleted the use-github-app branch March 4, 2024 16:12
@fcollonval
Copy link
Member

Thanks a lot @blink1073 for finishing up this PR.

This was referenced Mar 6, 2024
Merged
Closed
This was referenced Mar 12, 2024
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
This was referenced Mar 25, 2024
Merged
Closed
Merged
This was referenced Mar 25, 2024
Closed
Merged
Merged
@blink1073 blink1073 mentioned this pull request Mar 26, 2024
Merged
This was referenced Mar 26, 2024
Merged
Merged
Merged
Merged
Merged
This was referenced Mar 28, 2024
Merged
Merged
This was referenced Apr 15, 2024
Merged
Merged
@jtpio jtpio mentioned this pull request May 1, 2024
Closed
@krassowski krassowski mentioned this pull request Aug 30, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jtpio jtpio Awaiting requested review from jtpio

@fcollonval fcollonval Awaiting requested review from fcollonval

Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Replace usage of ADMIN_GITHUB_TOKEN
3 participants
@blink1073 @jtpio @fcollonval