forgejo/runner
31
87
Fork 91
Code Issues 38 Pull requests 10 Releases 81 Packages 1 Activity Actions

WIP: fix: use token to clone actions from local instance #855

Closed
hailey wants to merge 1 commit from hailey/runner:local-instance-clone-token into main
pull from: hailey/runner:local-instance-clone-token
merge into: forgejo:main
Conversation 10 Commits 1 Files changed 1 +12 -10
hailey commented 2025-08-14 10:31:42 +00:00
First-time contributor
Copy link

This PR supersedes #816 with @earl-warren's kind support. It depends on https://codeberg.org/forgejo/forgejo/pulls/8889 upstream

  • other
    • PR: WIP: fix: use token to clone actions from local instance
This PR supersedes https://code.forgejo.org/forgejo/runner/pulls/816 with @earl-warren's kind support. It depends on https://codeberg.org/forgejo/forgejo/pulls/8889 upstream <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/855): <!--number 855 --><!--line 0 --><!--description V0lQOiBmaXg6IHVzZSB0b2tlbiB0byBjbG9uZSBhY3Rpb25zIGZyb20gbG9jYWwgaW5zdGFuY2U=-->WIP: fix: use token to clone actions from local instance<!--description--> <!--end release-notes-assistant-->
cascading-pr commented 2025-08-14 10:31:55 +00:00
Contributor
Copy link

cascading-pr updated at actions/setup-forgejo#600

cascading-pr updated at https://code.forgejo.org/actions/setup-forgejo/pulls/600
hailey force-pushed local-instance-clone-token from fcc055ae84
Some checks failed
checks / build and test (pull_request) Failing after 58s
Details
checks / runner exec tests (pull_request) Has been skipped
Details
/ cascade (pull_request_target) Failing after 16m33s
Details
act / unit (pull_request) Successful in 4m3s
Details
act / integration (pull_request) Successful in 10m49s
Details
to 78f63be201
Some checks failed
issue-labels / release-notes (pull_request_target) Successful in 6s
Details
checks / build and test (pull_request) Failing after 58s
Details
checks / runner exec tests (pull_request) Has been skipped
Details
/ cascade (pull_request_target) Failing after 15m24s
Details
act / unit (pull_request) Successful in 4m8s
Details
act / integration (pull_request) Failing after 10m18s
Details
2025-08-14 10:32:54 +00:00 Compare
cascading-pr commented 2025-08-14 10:33:11 +00:00
Contributor
Copy link

cascading-pr updated at actions/setup-forgejo#600

cascading-pr updated at https://code.forgejo.org/actions/setup-forgejo/pulls/600
hailey changed title from WIP: fix: use token to clone actions from local instance to WIP: fix: use token to clone actions from local instance [skip cascade] 2025-08-14 10:33:23 +00:00
hailey commented 2025-08-14 10:34:15 +00:00
Author
First-time contributor
Copy link

I see what [skip cascade] does now 😁 sorry about that

I see what `[skip cascade]` does now 😁 sorry about that
earl-warren commented 2025-08-14 14:20:52 +00:00
Contributor
Copy link

It is fine really.

It is fine really.
earl-warren commented 2025-08-29 14:08:38 +00:00
Contributor
Copy link

@hailey do you need anything? I mean beside time to work on that 😁

@hailey do you need anything? I mean beside time to work on that 😁
earl-warren commented 2025-09-16 14:24:00 +00:00
Contributor
Copy link

@hailey gentle ping. If you have no time to complete this, please say so 🙏

@hailey gentle ping. If you have no time to complete this, please say so 🙏
hailey force-pushed local-instance-clone-token from 78f63be201
Some checks failed
issue-labels / release-notes (pull_request_target) Successful in 6s
Details
checks / build and test (pull_request) Failing after 58s
Details
checks / runner exec tests (pull_request) Has been skipped
Details
/ cascade (pull_request_target) Failing after 15m24s
Details
act / unit (pull_request) Successful in 4m8s
Details
act / integration (pull_request) Failing after 10m18s
Details
to 00d12ac197
Some checks failed
cascade / forgejo (pull_request_target) Has been skipped
Details
cascade / debug (pull_request_target) Has been skipped
Details
cascade / end-to-end (pull_request_target) Has been skipped
Details
checks / validate pre-commit-hooks file (pull_request) Successful in 42s
Details
checks / validate mocks (pull_request) Successful in 1m3s
Details
checks / build and test (pull_request) Successful in 3m9s
Details
checks / runner exec tests (pull_request) Successful in 31s
Details
issue-labels / release-notes (pull_request_target) Successful in 5s
Details
checks / runner integration tests (pull_request) Successful in 4m58s
Details
checks / integration tests (pull_request) Failing after 10m56s
Details
2025-09-25 06:47:22 +00:00 Compare
hailey changed title from WIP: fix: use token to clone actions from local instance [skip cascade] to fix: use token to clone actions from local instance [skip cascade] 2025-09-25 06:52:36 +00:00
hailey commented 2025-09-25 07:04:24 +00:00
Author
First-time contributor
Copy link

Hi! Sorry for the latency. I've rebased this branch against main, fixed that lint error, and tested that it works as expected in my own deployment against Forgejo v12.0.4+forgejo#8889.

It looks like all of the tests have passed except for one of the integration tests, which looks unrelated enough to this change that I think it's a flakey failure. I don't have access to re-run the build though. Other than that, I think we should be good to go here. Thanks again for your patience

Hi! Sorry for the latency. I've rebased this branch against main, fixed that lint error, and tested that it works as expected in my own deployment against Forgejo v12.0.4+[forgejo#8889](https://codeberg.org/forgejo/forgejo/pulls/8889). It looks like all of the tests have passed except for one of the integration tests, which looks unrelated enough to this change that I think it's a flakey failure. I don't have access to re-run the build though. Other than that, I think we should be good to go here. Thanks again for your patience
hailey force-pushed local-instance-clone-token from 00d12ac197
Some checks failed
cascade / forgejo (pull_request_target) Has been skipped
Details
cascade / debug (pull_request_target) Has been skipped
Details
cascade / end-to-end (pull_request_target) Has been skipped
Details
checks / validate pre-commit-hooks file (pull_request) Successful in 42s
Details
checks / validate mocks (pull_request) Successful in 1m3s
Details
checks / build and test (pull_request) Successful in 3m9s
Details
checks / runner exec tests (pull_request) Successful in 31s
Details
issue-labels / release-notes (pull_request_target) Successful in 5s
Details
checks / runner integration tests (pull_request) Successful in 4m58s
Details
checks / integration tests (pull_request) Failing after 10m56s
Details
to f70de1ec5a
All checks were successful
checks / validate pre-commit-hooks file (pull_request) Successful in 32s
Details
checks / validate mocks (pull_request) Successful in 41s
Details
checks / build and test (pull_request) Successful in 48s
Details
checks / runner exec tests (pull_request) Successful in 25s
Details
checks / runner integration tests (pull_request) Successful in 4m18s
Details
checks / integration tests (pull_request) Successful in 11m21s
Details
issue-labels / release-notes (pull_request_target) Successful in 10s
Details
cascade / debug (pull_request_target) Has been skipped
Details
cascade / end-to-end (pull_request_target) Successful in 4s
Details
cascade / forgejo (pull_request_target) Successful in 1m0s
Details
2025-09-25 07:05:03 +00:00 Compare
viceice reviewed 2025-09-25 07:34:06 +00:00
act/runner/step_action_remote.go
@ -111,0 +114,4 @@
if strings.HasPrefix(cloneURL, gitInstance+"/") {
// only provide clone token if the action is on the same instance
// which triggered the task
token = sar.RunContext.Config.GetToken()
viceice commented 2025-09-25 07:34:03 +00:00
Owner
Copy link

what happened if you run this runner version against forgejo < v13 ?

what happened if you run this runner version against forgejo < v13 ?
hailey commented 2025-09-25 07:48:26 +00:00
Author
First-time contributor
Copy link

Good catch - it won't be able to access public repositories anymore due to the strict task.RepoID == repo.ID check in Forgejo < 13. I don't think there's much we can do about this. Since these are pretty tightly coupled pieces of software anyway, maybe we just document that whichever version of the runner this lands in requires at least Forgejo 13

Good catch - it won't be able to access public repositories anymore due to the strict `task.RepoID == repo.ID` check in Forgejo < 13. I don't think there's much we can do about this. Since these are pretty tightly coupled pieces of software anyway, maybe we just document that whichever version of the runner this lands in requires at least Forgejo 13
viceice commented 2025-09-25 08:05:52 +00:00
Owner
Copy link

does Forgejo send the version with the job payload? or something else we can use to distinguish support?

does Forgejo send the version with the job payload? or something else we can use to distinguish support?
viceice commented 2025-09-25 08:06:27 +00:00
Owner
Copy link

otherwise this will need to wait for at least next lts release of Forgejo

otherwise this will need to wait for at least next lts release of Forgejo
hailey commented 2025-09-26 00:05:47 +00:00
Author
First-time contributor
Copy link

This can wait, I'm happy to keep running my branch deploy until then :)

This can wait, I'm happy to keep running my branch deploy until then :)
earl-warren changed title from fix: use token to clone actions from local instance [skip cascade] to fix: use token to clone actions from local instance 2025-09-26 07:14:55 +00:00
earl-warren changed title from fix: use token to clone actions from local instance to WIP: fix: use token to clone actions from local instance 2025-09-26 07:15:00 +00:00
earl-warren commented 2025-09-26 07:16:02 +00:00
Contributor
Copy link

@hailey it should be possible to implement this in a backward compatible way, don't you think?

@hailey it should be possible to implement this in a backward compatible way, don't you think?
mfenniak commented 2026-01-01 04:58:57 +00:00
Owner
Copy link

This has been completed in a backwards-compatible method by #1249. Thanks for the work on this issue! I'll close it at this time.

This has been completed in a backwards-compatible method by #1249. Thanks for the work on this issue! I'll close it at this time.
mfenniak closed this pull request 2026-01-01 04:58:57 +00:00
Some checks are pending
checks / validate pre-commit-hooks file (pull_request) Successful in 32s
Details
checks / validate mocks (pull_request) Successful in 41s
Required
Details
checks / build and test (pull_request) Successful in 48s
Details
checks / runner exec tests (pull_request) Successful in 25s
Required
Details
checks / runner integration tests (pull_request) Successful in 4m18s
Details
checks / integration tests (pull_request) Successful in 11m21s
Details
issue-labels / release-notes (pull_request_target) Successful in 10s
Details
cascade / debug (pull_request_target) Has been skipped
Required
Details
cascade / end-to-end (pull_request_target) Successful in 4s
Required
Details
cascade / forgejo (pull_request_target) Successful in 1m0s
Required
Details
checks / Build Forgejo Runner *
Required
checks / Run integration tests with *
Required

Pull request closed

Please reopen this pull request to perform a merge.
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
FreeBSD

   
Kind/Breaking

Breaking change that won't be backward compatible

  
Kind/Bug

Something is not working

  
Kind/Chore

It is no fun but it needs to be done, this is a chore.

  
Kind/DependencyUpdate

for pull requests that are created by renovate when updating a dependency

  
Kind/Documentation

Documentation changes

  
Kind/Enhancement

Improve existing functionality

  
Kind/Feature

New functionality

  
Kind/Security

This is security issue

  
Kind/Testing

Issue or pull request related to testing

  
Priority
Critical
The priority is critical

  
Priority
High
The priority is high

  
Priority
Low
The priority is low

  
Priority
Medium
The priority is medium

  
Reviewed
Confirmed
Issue has been confirmed

  
Reviewed
Duplicate
This issue or pull request already exists

  
Reviewed
Invalid
Invalid issue

  
Reviewed
Won't Fix
This issue won't be fixed

  
Status
Abandoned
Somebody has started to work on this but abandoned work

  
Status
Blocked
Something is blocking this issue or pull request

  
Status
Need More Info
Feedback is required to reproduce issue or to continue work

  
Windows

Windows ports is an independent project, see https://github.com/Crown0815/Forgejo-runner-windows-builder

  
linux-powerpc64le

powerpc64le

  
linux-riscv64

   
linux-s390x

   
run-end-to-end-tests

Run https://code.forgejo.org/forgejo/end-to-end with a runner compiled from this pull request

  
run-forgejo-tests

Run https://codeberg.org/forgejo/forgejo tests importing the runner from this pull request

No labels
FreeBSD
Kind/Breaking
Kind/Bug
Kind/Chore
Kind/DependencyUpdate
Kind/Documentation
Kind/Enhancement
Kind/Feature
Kind/Security
Kind/Testing
Priority
Critical
Priority
High
Priority
Low
Priority
Medium
Reviewed
Confirmed
Reviewed
Duplicate
Reviewed
Invalid
Reviewed
Won't Fix
Status
Abandoned
Status
Blocked
Status
Need More Info
Windows
linux-powerpc64le
linux-riscv64
linux-s390x
run-end-to-end-tests
run-forgejo-tests
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
5 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
forgejo/runner!855
No description provided.