@@ -24,11 +24,17 @@ jobs:
2424 id-token : write
2525
2626 steps :
27+ - name : Generate token
28+ id : app-token
29+ uses : actions/create-github-app-token@v2
30+ with :
31+ app-id : ${{ secrets.APP_ID }}
32+ private-key : ${{ secrets.PRIVATE_KEY }}
2733 - name : Check if actor is member of admin or client-libs team
2834 id : team-check
2935 uses : actions/github-script@v7
3036 with :
31- github-token : ${{ secrets.GITHUB_TOKEN }}
37+ github-token : ${{ steps.app-token.outputs.token }}
3238 script : |
3339 const org = 'supabase'
3440 const { actor } = context
@@ -40,33 +46,22 @@ jobs:
4046 team_slug,
4147 username: actor,
4248 })
43- console.log('res', JSON.stringify(res, null, 2))
4449 return res && res.status === 200
45- } catch (_ ) {
50+ } catch (error ) {
4651 return false
4752 }
4853 }
4954 const isAdmin = await isTeamMember('admin')
5055 const isClientLibs = await isTeamMember('client-libs')
5156 const isMember = isAdmin || isClientLibs
52- console.log('isAdmin', isAdmin)
53- console.log('isClientLibs', isClientLibs)
54- console.log('isMember', isMember)
5557 core.setOutput('is_team_member', isMember ? 'true' : 'false')
5658
5759name : Fail if not authorized
58- if : steps.team-check.outputs.is_team_member != 'true'
60+ if : ${{ steps.team-check.outputs.is_team_member != 'true' }}
5961 run : |
6062 echo "You must be a member of @supabase/admin or @supabase/client-libs."
6163 exit 1
6264
63- name : Generate token
64- id : app-token
65- uses : actions/create-github-app-token@v2
66- with :
67- app-id : ${{ secrets.APP_ID }}
68- private-key : ${{ secrets.PRIVATE_KEY }}
69-
7065uses : actions/checkout@v5
7166 with :
7267 fetch-depth : 0
0 commit comments