-
Notifications
You must be signed in to change notification settings - Fork 557
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot push to open source repo using community user bot #864
Comments
Looks like |
@crazy-max we've confirmed that the user has the read/write scope for the community organization and that the action is indeed using that username/password combination. These are confidential and unfortunately i do not have access to the credentials to run it locally. I was able to make a fork for my non-community organization on docker hub and it worked successfully |
Fwiw, the login action succeeds |
Yes auth succeeds but this user does not have enough perms to push to https://hub.docker.com/r/otel/autoinstrumentation-java.
Is someone else with the credentials able to repro locally?
Can you check if |
That does not seem enough. I think you need first to affect this user to a team in the org and set the perms to push to the repo. |
@crazy-max waiting on hearing back from a teammate about your questions, thank you for the response. Just a brief Q: any chance this could be related to #160? |
The user is The user is |
It appears giving the team the Read & Write permission solve the problem. However, this looks wrong to me. If I give the user the permission directly to the entire org (via their access token permissions), shouldn't that have a precedence over what permission they have indirectly via the team they belong to? I believe this is how it worked in the past, so something may have changed recently in how the permissions are calculated. |
Thanks for your feedback can you open an issue on https://github.com/docker/hub-feedback/issues about it please? |
Troubleshooting
Behaviour
Steps to reproduce this issue
Expected behaviour
Image should be pushed successfully to both repositories
Actual behaviour
ERROR: failed to solve: failed to push otel/autoinstrumentation-java:1.25.1: server message: insufficient_scope: authorization failed
Error: buildx failed with: ERROR: failed to solve: failed to push otel/autoinstrumentation-java:1.25.1: server message: insufficient_scope: authorization failed
Configuration
Logs
logs.txt
The text was updated successfully, but these errors were encountered: