Add app to generate token (#1)

Signed-off-by: Sophia Wang <[email protected]>
complytime · Oct 14, 2024 · bac213c · bac213c
1 parent 9cf7b97
commit bac213c
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 8 deletions.
diff --git a/.github/workflows/apply_peribolos.yml b/.github/workflows/apply_peribolos.yml
@@ -18,8 +18,7 @@ jobs:
         uses: actions/checkout@v4
 
       - name: Copy peribolos.yaml
-        run: |
-               cp peribolos.yaml  /tmp
+        run: cp peribolos.yaml  /tmp
 
       - name: Checkout ghproxy and peribolos code
         if: ${{ github.repository_owner == 'complytime' && github.event_name == 'push' && github.ref == 'refs/heads/main' }}
@@ -42,15 +41,24 @@ jobs:
           go mod tidy
           go build -o  .
           cp peribolos /tmp
-        
+      
+      - name: Generate a app token
+        id: generate-token
+        uses: actions/create-github-app-token@v1
+        with:
+          app-id: ${{ vars.APP_ID }}
+          private-key: ${{ secrets.APP_PRIVATE_KEY }}
+
       - name: Apply peribolos.yaml
+        env:
+          GITHUB_TOKEN: ${{ steps.generate-token.outputs.token }}
         if: ${{ github.repository_owner == 'complytime' && github.event_name == 'push' && github.ref == 'refs/heads/main' }}
         run: |
-          echo ${{ secrets.orgtoken  }} > auth.txt
+          echo $GITHUB_TOKEN > auth.txt
           /tmp/ghproxy --legacy-disable-disk-cache-partitions-by-auth-header=false --get-throttling-time-ms=300 --throttling-time-ms=900 --throttling-time-v4-ms=850 --throttling-max-delay-duration-seconds=45 --throttling-max-delay-duration-v4-seconds=110 --request-timeout=120 1>/dev/null 2>&1 &
           pid=$!
           jobs
-          /tmp/peribolos -config-path /tmp/peribolos.yaml  --fix-org --fix-org-members --fix-repos --github-token-path /tmp/org-token --github-endpoint http://localhost:8888 --confirm 2>&1 | jq -r '[.severity, .time, .msg] | join(" | ")'
+          /tmp/peribolos -config-path /tmp/peribolos.yaml  --fix-org --fix-org-members --fix-repos -min-admins 2 --github-token-path /tmp/org-token  2>&1 | jq -r '[.severity, .time, .msg] | join(" | ")'
           kill $pid
           rm auth.txt
       
diff --git a/README.md b/README.md
@@ -1 +1 @@
-This repository will apply peribolos to manage org complytime.
+This repository will apply peribolos to manage orgnization complytime.
diff --git a/peribolos.yaml b/peribolos.yaml
@@ -6,14 +6,14 @@ orgs:
     has_repository_projects: true
     members_can_create_repositories: true
     admins:
+      - beatrizmcouto
       - jpower432
+      - jflowers
     members:
-      - beatrizmcouto
       - d10n
       - gvauter
       - hbraswelrh
       - huiwangredhat
-      - jflowers
     repos:
       ".github":
         default_branch: main
Original file line number	Diff line number	Diff line change
		@@ -1 +1 @@
		This repository will apply peribolos to manage org complytime.
		This repository will apply peribolos to manage orgnization complytime.