fix: use GITEA_TOKEN for GHCR login in Gitea Actions (CAR-892) #7

Merged

Barcode Betty merged 3 commits from betty/car-892-gitea-actions-ghcr-auth into dev 2026-05-21 11:33:28 +00:00

Conversation 0 Commits 3 Files Changed 1

+1 -1

Barcode Betty commented 2026-05-21 11:31:50 +00:00

Member

Copy Link

Copy Source

Fix: Gitea Actions GHCR authentication failure

Issue: CAR-892

Root cause

In Gitea Actions, ${{ secrets.GITHUB_TOKEN }} is not available. The docker/login-action step was failing with authentication required when pushing to ghcr.io/cartsnitch/auth, which caused the build-and-push job to fail on every branch (main, dev, uat).

This left the auth service with a stale image on UAT, resulting in HTTP 503 from cartsnitch.uat.farh.net/auth/get-session.

Fix

Replace ${{ secrets.GITHUB_TOKEN }} with ${{ secrets.GITEA_TOKEN }} in the docker/login-action configuration.

The GITEA_TOKEN secret was already configured for infra checkout; it also has packages:write scope needed for GHCR pushes.

Verification

• Re-run the Gitea Actions workflow on the dev branch after merge
• Confirm https://cartsnitch.uat.farh.net/auth/get-session returns 200

cc @cpfarhood

## Fix: Gitea Actions GHCR authentication failure **Issue**: [CAR-892](/CAR/issues/CAR-892) ### Root cause In Gitea Actions, `${{ secrets.GITHUB_TOKEN }}` is not available. The `docker/login-action` step was failing with `authentication required` when pushing to `ghcr.io/cartsnitch/auth`, which caused the `build-and-push` job to fail on every branch (main, dev, uat). This left the auth service with a stale image on UAT, resulting in HTTP 503 from `cartsnitch.uat.farh.net/auth/get-session`. ### Fix Replace `${{ secrets.GITHUB_TOKEN }}` with `${{ secrets.GITEA_TOKEN }}` in the `docker/login-action` configuration. The `GITEA_TOKEN` secret was already configured for infra checkout; it also has `packages:write` scope needed for GHCR pushes. ### Verification - Re-run the Gitea Actions workflow on the `dev` branch after merge - Confirm `https://cartsnitch.uat.farh.net/auth/get-session` returns 200 cc @cpfarhood

Barcode Betty added 3 commits 2026-05-21 11:31:50 +00:00

Merge pull request #3 from cartsnitch/dev ... 7e89ab72bd

chore: promote dev to uat — auth repo migration complete

Merge pull request 'ci: promote Gitea Actions workflow changes to UAT' (#6) from dev into uat ... 934397a073

ci: promote Gitea Actions workflow changes to UAT (#6)

fix: use GITEA_TOKEN for GHCR login in Gitea Actions ... dad3132fdb

Replace ${{ secrets.GITHUB_TOKEN }} with ${{ secrets.GITEA_TOKEN }}
for docker/login-action in Gitea Actions. GITHUB_TOKEN is not available
in Gitea Actions and was causing 'authentication required' failures for
ghcr.io push, leaving the auth service with a stale image on UAT.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

Barcode Betty merged commit f2a2673061 into dev 2026-05-21 11:33:28 +00:00

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

bug

Something isn't working

documentation

Improvements or additions to documentation

duplicate

This issue or pull request already exists

enhancement

New feature or request

good first issue

Good for newcomers

help wanted

Extra attention is needed

invalid

This doesn't seem right

question

Further information is requested

wontfix

This will not be worked on

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

ai-review (AI Review) cs_betty (Barcode Betty) cs_charlie (Checkout Charlie) cpfarhood (Chris Farhood) ci (Continuous Integration [bot]) cs_carl (Coupon Carl) cs_dottie (Deal Dottie) flux (Flux CD) admin (Gitea Admin) cs_martha (Markdown Martha) renovate (Mend Renovate) cs_savannah (Savannah Savings) cs_steve (Stockboy Steve)

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: cartsnitch/auth#7