diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 83ac37a4..06540f6f 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -25,6 +25,7 @@ jobs: name: GH Release needs: [ build-test ] runs-on: ubuntu-latest + environment: publish concurrency: release permissions: id-token: write @@ -36,8 +37,8 @@ jobs: uses: tibdex/github-app-token@v1 id: app_token with: - app_id: 360953 - private_key: ${{ secrets.ACTIONHELPER }} + app_id: ${{ secrets.APP_ID }} + private_key: ${{ secrets.APP_PRIVATE_KEY }} - uses: actions/checkout@v3 with: @@ -100,6 +101,7 @@ jobs: name: Upload Homebrew Formula if: needs.secureli-release.outputs.uploaded == 'true' runs-on: ubuntu-latest + environment: publish needs: secureli-release steps: - name: Display Inputs @@ -109,8 +111,8 @@ jobs: uses: tibdex/github-app-token@v1 id: app_token with: - app_id: 360953 - private_key: ${{ secrets.ACTIONHELPER }} + app_id: ${{ secrets.APP_ID }} + private_key: ${{ secrets.APP_PRIVATE_KEY }} - uses: actions/checkout@v3 with: diff --git a/.github/workflows/publish_TEST.yml b/.github/workflows/publish_TEST.yml deleted file mode 100644 index b9ccbe22..00000000 --- a/.github/workflows/publish_TEST.yml +++ /dev/null @@ -1,29 +0,0 @@ -name: Testing Publish Workflow - -on: - push: - branches: [ feature/secureli-275-secure-tokens ] - - -jobs: - build-test: - name: Build & Test - uses: ./.github/workflows/build_and_test.yml - - - next_job: - name: Next Job - needs: [ build-test ] - runs-on: ubuntu-latest - steps: - - name: Get App Token - uses: tibdex/github-app-token@v1 - id: app_token - with: - app_id: 360953 - private_key: ${{ secrets.ACTIONHELPER }} - - - uses: actions/checkout@v3 - with: - fetch-depth: 0 - token: ${{ steps.app_token.outputs.token }}