Describe the bug
We see 401 errors in the setup portions of our actions, especially when trying to download action tarball URLs like https://api.github.com/repos/actions/checkout/tarball/a81bbbf8298c0fa03ea29cdc473d45769f953675, and especially in workflows with a number of jobs (~20). It doesn't happen every build, but happens frequently enough to be annoying.
Examples can also be seen around the web of this happening to others:
Runner Version and Platform
Version of your runner? 2.273.5
OS of the machine running the runner? Linux
Job Log Output
Current runner version: '2.273.5'
Prepare workflow directory
Prepare all required actions
Getting action download info
Download action repository 'actions/checkout@v2'
Warning: Failed to download action 'https://api.github.com/repos/actions/checkout/tarball/a81bbbf8298c0fa03ea29cdc473d45769f953675'. Error: Response status code does not indicate success: 401 (Unauthorized).
Warning: Back off 18.746 seconds before retry.
Warning: Failed to download action 'https://api.github.com/repos/actions/checkout/tarball/a81bbbf8298c0fa03ea29cdc473d45769f953675'. Error: Response status code does not indicate success: 401 (Unauthorized).
Warning: Back off 18.006 seconds before retry.
Error: Response status code does not indicate success: 401 (Unauthorized).
Suggestions
EDIT: a previous version of this description had presumed it was due to rate-limiting, but subsequent debugging has shown it's actually bad tokens being passed to the runners and the 401s are actually Bad credentials errors.
So I'm not sure what to suggest here beyond:
- Don't pass bad/expired tokens to runners (still unclear why this is happening – why aren't the tokens valid?)
- Provide better debugging of errors (include response bodies)
- Provide a way to debug tokens, and why api.github.com would be returning
Bad credentials for them.
Describe the bug
We see 401 errors in the setup portions of our actions, especially when trying to download action tarball URLs like
https://api.github.com/repos/actions/checkout/tarball/a81bbbf8298c0fa03ea29cdc473d45769f953675, and especially in workflows with a number of jobs (~20). It doesn't happen every build, but happens frequently enough to be annoying.Examples can also be seen around the web of this happening to others:
Runner Version and Platform
Version of your runner? 2.273.5
OS of the machine running the runner? Linux
Job Log Output
Suggestions
EDIT: a previous version of this description had presumed it was due to rate-limiting, but subsequent debugging has shown it's actually bad tokens being passed to the runners and the 401s are actually
Bad credentialserrors.So I'm not sure what to suggest here beyond:
Bad credentialsfor them.