Skip to content

Commit

Permalink
added permissions for checkout
Browse files Browse the repository at this point in the history
  • Loading branch information
mrmoonl1ght94 committed Jan 23, 2024
1 parent 25985e6 commit 73aa34f
Show file tree
Hide file tree
Showing 18 changed files with 79 additions and 23 deletions.
3 changes: 2 additions & 1 deletion .github/workflows/backend.yml
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,10 @@ on:
paths:
- "kafka-ui-api/**"
- "pom.xml"
permissions:
permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read
jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/branch-deploy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,10 @@ on:

pull_request:
types: ['labeled']
permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read
jobs:
build:
if: ${{ github.event.label.name == 'status/feature_testing' || github.event.label.name == 'status/feature_testing_public' }}
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/branch-remove.yml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,10 @@ on:
workflow_dispatch:
pull_request:
types: ['unlabeled', 'closed']
permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read
jobs:
remove:
runs-on: ubuntu-latest
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/build-public-image.yml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,10 @@ on:
workflow_dispatch:
pull_request:
types: ['labeled']
permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read
jobs:
build:
if: ${{ github.event.label.name == 'status/image_testing' }}
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/codeql-analysis.yml
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,11 @@ on:
schedule:
- cron: '39 15 * * 6'

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
analyze:
name: Analyze
Expand Down
6 changes: 6 additions & 0 deletions .github/workflows/cve.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,12 @@ on:
schedule:
# * is a special character in YAML so you have to quote this string
- cron: '0 8 15 * *'

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
6 changes: 6 additions & 0 deletions .github/workflows/documentation.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,12 @@ on:
- synchronize
paths:
- '**.md'

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/e2e-automation.yml
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,11 @@ on:
required: false
type: string

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
5 changes: 4 additions & 1 deletion .github/workflows/e2e-checks.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -8,8 +8,11 @@ on:
- "kafka-ui-react-app/**"
- "kafka-ui-e2e-checks/**"
- "pom.xml"
permissions:
permissions: # TODO remove when public
statuses: write
checks: write
pull-requests: write
contents: read
jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/e2e-manual.yml
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,11 @@ on:
required: true
type: string

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/e2e-weekly.yml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,11 @@ on:
schedule:
- cron: '0 1 * * 1'

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down
4 changes: 3 additions & 1 deletion .github/workflows/frontend.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,11 @@ on:
paths:
- "kafka-ui-contract/**"
- "kafka-ui-react-app/**"
permissions:
permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
env:
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/master.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,11 @@ on:
push:
branches: [ "main" ]

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/release-serde-api.yaml
Original file line number Diff line number Diff line change
@@ -1,6 +1,11 @@
name: "Infra: Release: Serde API"
on: workflow_dispatch

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
release-serde-api:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/release.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,11 @@ on:
release:
types: [published]

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
release:
runs-on: ubuntu-latest
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/separate_env_public_create.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,11 @@ on:
required: true
default: 'demo'

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build:
runs-on: ubuntu-latest
Expand Down
20 changes: 0 additions & 20 deletions .github/workflows/test.yaml

This file was deleted.

6 changes: 6 additions & 0 deletions .github/workflows/workflow_linter.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,12 @@ on:
- "edited"
paths:
- ".github/workflows/**"

permissions: # TODO remove when public
checks: write
pull-requests: write
contents: read

jobs:
build-and-test:
runs-on: ubuntu-latest
Expand Down

0 comments on commit 73aa34f

Please sign in to comment.