diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 48aaf0cb..6045aa24 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,6 +5,8 @@ on: tags: - '*' +permissions: write-all + jobs: build: @@ -174,7 +176,7 @@ jobs: id: create_release uses: actions/create-release@v1.1.2 env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ secrets.ADMIN_GEOPORTAL_TOKEN }} with: tag_name: ${{ github.ref }} release_name: Release ${{ github.ref }} @@ -195,7 +197,7 @@ jobs: - name: Upload Release Asset (bundles) # FIXME inutile ? uses: actions/upload-release-asset@v1 env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ secrets.ADMIN_GEOPORTAL_TOKEN}} with: upload_url: ${{ steps.create_release.outputs.upload_url }} asset_path: ./bundles.zip @@ -205,7 +207,7 @@ jobs: - name: Upload Release Asset (1) uses: actions/upload-release-asset@v1 env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ secrets.ADMIN_GEOPORTAL_TOKEN }} with: upload_url: ${{ steps.create_release.outputs.upload_url }} asset_path: ./GpServices.js @@ -215,7 +217,7 @@ jobs: - name: Upload Release Asset (2) uses: actions/upload-release-asset@v1 env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ secrets.ADMIN_GEOPORTAL_TOKEN }} with: upload_url: ${{ steps.create_release.outputs.upload_url }} asset_path: ./GpServices-src.js @@ -225,7 +227,7 @@ jobs: - name: Upload Release Asset (3) uses: actions/upload-release-asset@v1 env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ secrets.ADMIN_GEOPORTAL_TOKEN }} with: upload_url: ${{ steps.create_release.outputs.upload_url }} asset_path: ./GpServices-map.js @@ -267,6 +269,7 @@ jobs: if: github.event_name == 'push' && contains(github.ref, '/tags/') # Only for tags ! needs: publish_package runs-on: ubuntu-latest + permissions: write-all steps: - name: Checkout uses: actions/checkout@v2