actions/gradle
1
0
Fork 0
mirror of https://github.com/gradle/actions.git synced 2025-08-19 15:31:28 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,487 Commits 19 Branches 106 Tags
Commit Graph

5 Commits

Author SHA1 Message Date
Daz DeBoer
719985db3d
Simplify requesting short-lived Develocity access tokens (#259) 
- Always fetch a token for every hostname in the access key
- Use any tokens that are successfully fetched
- Retain access key if no tokens can be fetched
 2024-06-14 21:18:08 -06:00
Inaki Villar
5f1c5827bf handle missing access token 2024-06-14 16:44:06 -06:00
daz
8dbe9a3802 Update DV access key regex to be more selective 
This should address the code-scanning alert
  https://github.com/gradle/actions/security/code-scanning/1
 2024-06-13 13:35:19 -06:00
Alexis Tual
96b9cb4988
Set both DEVELOCITY_ACCESS_KEY and GRADLE_ENTERPRISE_ACCESS_KEY env vars (#225) 
Follow up of https://github.com/gradle/actions/pull/224, we now attempt to set both old and new access key env variables to a short lived token.
If a short-lived token cannot be obtained, then:
- DEVELOCITY_ACCESS_KEY is set to an empty string, preventing this from being used.
- GRADLE_ENTERPRISE_ACCESS_KEY is left intact, with a deprecation warning being issued.
 2024-05-17 15:07:50 -06:00
Alexis Tual
500e0ee5b3
Add support for short-lived tokens (#224) 
The setup-gradle action tries to get a short-lived access token given the supplied Develocity access key.
This key can be passed either with the `DEVELOCITY_ACCESS_KEY` env var or via the  `develocity-access-key` input parameter.
If a token can be retrieved, then the `DEVELOCITY_ACCESS_KEY` env var will be set to the token. 
Otherwise the `DEVELOCITY_ACCESS_KEY` will be set to a blank string, to avoid a leak.

---------

Co-authored-by: daz <daz@gradle.com>
 2024-05-15 16:49:55 -06:00