George Shuklin

Github actions sometimes is just odd. If you try to make your API calls works without a personal access token, you’ll find yourself at a crazy landscape of ‘application tokens’.

You need a private key for JWT token you issue by yourself. This is ‘token #1’.

You need to use JWT token to make Bearer token. This is ‘token #2’.

Then you can use Bearer token to issue ‘a token’, which is called ‘access token’. This is ‘token #3’.

Then, if you want to register a self-hosted runner you need to issue a registration token using the ‘access token’ (token #4)

And then you use an issued registration token to register the runner. Which issues some internal token to use for connection. (token #5)

What a long chain of tokens…

--

--

George Shuklin

George Shuklin

I work at Servers.com, most of my stories are about Ansible, Ceph, Python, Openstack and Linux. My hobby is Rust.