ci: log into registry as token owner (admin), not org name
Build: Production / build (push) Successful in 6m41s
Build: Production / build (push) Successful in 6m41s
Gitea's docker login is lenient and accepts the org name as a username at handshake time, but the per-scope token exchange that buildkit performs for blob operations needs to resolve a real user identity. Using admin (the user that owns REGISTRY_TOKEN) prevents 401s on blob HEAD requests during push. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
+1
-1
@@ -24,7 +24,7 @@ jobs:
|
|||||||
uses: docker/login-action@v3
|
uses: docker/login-action@v3
|
||||||
with:
|
with:
|
||||||
registry: git.farh.net
|
registry: git.farh.net
|
||||||
username: ${{ gitea.repository_owner }}
|
username: admin
|
||||||
password: ${{ secrets.REGISTRY_TOKEN }}
|
password: ${{ secrets.REGISTRY_TOKEN }}
|
||||||
|
|
||||||
- name: Docker meta
|
- name: Docker meta
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ jobs:
|
|||||||
uses: docker/login-action@v3
|
uses: docker/login-action@v3
|
||||||
with:
|
with:
|
||||||
registry: git.farh.net
|
registry: git.farh.net
|
||||||
username: ${{ gitea.repository_owner }}
|
username: admin
|
||||||
password: ${{ secrets.REGISTRY_TOKEN }}
|
password: ${{ secrets.REGISTRY_TOKEN }}
|
||||||
|
|
||||||
- name: Docker meta
|
- name: Docker meta
|
||||||
|
|||||||
Reference in New Issue
Block a user