Allow Secrets to be used as Access Tokens #10646

New Issue

Open

opened 2025-11-02 09:14:09 -06:00 by GiteaMirror · 8 comments

GiteaMirror commented 2025-11-02 09:14:09 -06:00

Owner

Copy Link

Originally created by @1in1 on GitHub (Apr 13, 2023).

Feature Description

Hi! The specific use case I'm bumping into is that I frequently mirror private GitHub repos to my Gitea instance. I have a single read-only access token for use with Gitea. So I often go through the flow:

• New Migration
• GitHub Migration
• Private repo address in the URL field, then I have to dig up the same Gitea access token each time

In trying to speed this up, I saved the access token as a secret in Gitea. If I'm understanding correctly, this should mean it's usable in Actions. I'd love if this would also work in the Access Token field (and potentially, more widely?). I.e., it would be great if I could just fill in

Access Token: ${{ACCESS_TOKEN_GITEA_GITHUB}}

I've confirmed that this does not currently work at the moment (nor do ${TOKEN}, $TOKEN, or TOKEN). I have no idea if anything like this would currently work on GitHub, as I never use GitHub for this purpose.

I've done my best to look for existing/closed issues on this, and failed to find anything. It may be that I'm misunderstanding something, or that the authors aren't keen for the scope of secrets to be expanded to this; please let me know if there's a better way I should be doing this!

Thanks :)

Screenshots

No response

Originally created by @1in1 on GitHub (Apr 13, 2023). ### Feature Description Hi! The specific use case I'm bumping into is that I frequently mirror private GitHub repos to my Gitea instance. I have a single read-only access token for use with Gitea. So I often go through the flow: - New Migration - GitHub Migration - Private repo address in the URL field, then I have to dig up the _same_ Gitea access token each time In trying to speed this up, I saved the access token as a secret in Gitea. If I'm understanding correctly, this should mean it's usable in Actions. I'd love if this would also work in the Access Token field (and potentially, more widely?). I.e., it would be great if I could just fill in ``` Access Token: ${{ACCESS_TOKEN_GITEA_GITHUB}} ``` I've confirmed that this does not currently work at the moment (nor do `${TOKEN}`, `$TOKEN`, or `TOKEN`). I have no idea if anything like this would currently work on GitHub, as I never use GitHub for this purpose. I've done my best to look for existing/closed issues on this, and failed to find anything. It may be that I'm misunderstanding something, or that the authors aren't keen for the scope of secrets to be expanded to this; please let me know if there's a better way I should be doing this! Thanks :) ### Screenshots _No response_

GiteaMirror added the type/proposaltype/feature labels 2025-11-02 09:14:09 -06:00

GiteaMirror commented 2025-11-02 09:14:09 -06:00

Author

Owner

Copy Link

@wolfogre commented on GitHub (Apr 13, 2023):

Have you tried ${{ secrets.ACCESS_TOKEN_GITEA_GITHUB }}? See https://docs.github.com/en/actions/learn-github-actions/contexts#secrets-context

@wolfogre commented on GitHub (Apr 13, 2023): Have you tried `${{ secrets.ACCESS_TOKEN_GITEA_GITHUB }}`? See https://docs.github.com/en/actions/learn-github-actions/contexts#secrets-context

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@1in1 commented on GitHub (Apr 13, 2023):

I hadn't (thank you), but have now; can confirm that ${{ secrets.ACCESS_TOKEN_GITEA_GITHUB }} is not working either.

@1in1 commented on GitHub (Apr 13, 2023): I hadn't (thank you), but have now; can confirm that `${{ secrets.ACCESS_TOKEN_GITEA_GITHUB }}` is not working either.

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@wolfogre commented on GitHub (Apr 13, 2023):

Could you please show me your workflow yaml file and the screenshot of secrets setting page?

@wolfogre commented on GitHub (Apr 13, 2023): Could you please show me your workflow yaml file and the screenshot of secrets setting page?

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@1in1 commented on GitHub (Apr 13, 2023):

So I have no yaml file for this; I suppose what I'm requesting is the ability to use these secrets outside of that context. E.g., if I have a secrets page that looks like this:

I would ideally love to be able to use this secret as so:

As I say, if there's a better/more obvious approach that already exists, which I should be using, I'm all ears!

@1in1 commented on GitHub (Apr 13, 2023): So I have no yaml file for this; I suppose what I'm requesting is the ability to use these secrets outside of that context. E.g., if I have a secrets page that looks like this: <img width="896" alt="image" src="https://user-images.githubusercontent.com/49785531/231735901-e1193bb2-9979-4de2-bd03-1699e52f77ec.png"> I would ideally love to be able to use this secret as so: <img width="615" alt="image" src="https://user-images.githubusercontent.com/49785531/231736097-aeb57e28-258e-40e1-b6d7-93c34abfec97.png"> As I say, if there's a better/more obvious approach that already exists, which I should be using, I'm all ears!

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@wolfogre commented on GitHub (Apr 13, 2023):

Sorry I misunderstood.

Currently, the secrets are used for Gitea Actions only. So what you need hasn't been supported yet.

@wolfogre commented on GitHub (Apr 13, 2023): Sorry I misunderstood. Currently, the secrets are used for Gitea Actions only. So what you need hasn't been supported yet.

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@1in1 commented on GitHub (Apr 13, 2023):

No problem at all, I appreciate you taking a look!

@1in1 commented on GitHub (Apr 13, 2023): No problem at all, I appreciate you taking a look!

GiteaMirror commented 2025-11-02 09:14:10 -06:00

Author

Owner

Copy Link

@sobcz commented on GitHub (May 30, 2024):

This would be really nice to have. I just finished updating 73 mirror repositories one by one, going to settings of each, pasting the same token over and over, and it wasn't fun at all. And unless Gitea comes with better way how to deal with this, I'll have to do this every year, because Gitlab, which is the source, limits token validity to only one year. :(

@sobcz commented on GitHub (May 30, 2024): This would be really nice to have. I just finished updating 73 mirror repositories one by one, going to settings of each, pasting the same token over and over, and it wasn't fun at all. And unless Gitea comes with better way how to deal with this, I'll have to do this every year, because Gitlab, which is the source, limits token validity to only one year. :(

GiteaMirror commented 2025-11-02 09:14:11 -06:00

Author

Owner

Copy Link

@dimkadv2 commented on GitHub (Jun 20, 2024):

Hi, are there any plans to do this?

@dimkadv2 commented on GitHub (Jun 20, 2024): Hi, are there any plans to do this?

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

release/v1.25

release/v1.24

release/v1.23

release/v1.22

release/v1.21

release/v1.20

release/v1.19

release/v1.18

release/v1.17

release/v1.16

release/v1.15

release/v1.14

release/v1.13

release/v1.12

release/v1.11

release/v1.10

release/v1.9

release/v1.8

v1.25.3

v1.25.2

v1.25.1

v1.25.0

v1.24.7

v1.25.0-rc0

v1.26.0-dev

v1.24.6

v1.24.5

v1.24.4

v1.24.3

v1.24.2

v1.24.1

v1.24.0

v1.23.8

v1.24.0-rc0

v1.25.0-dev

v1.23.7

v1.23.6

v1.23.5

v1.23.4

v1.23.3

v1.23.2

v1.23.1

v1.23.0

v1.23.0-rc0

v1.24.0-dev

v1.22.6

v1.22.5

v1.22.4

v1.22.3

v1.22.2

v1.22.1

v1.22.0

v1.23.0-dev

v1.22.0-rc1

v1.21.11

v1.22.0-rc0

v1.21.10

v1.21.9

v1.21.8

v1.21.7

v1.21.6

v1.21.5

v1.21.4

v1.21.3

v1.21.2

v1.20.6

v1.21.1

v1.21.0

v1.21.0-rc2

v1.21.0-rc1

v1.20.5

v1.22.0-dev

v1.21.0-rc0

v1.20.4

v1.20.3

v1.20.2

v1.20.1

v1.20.0

v1.19.4

v1.21.0-dev

v1.20.0-rc2

v1.20.0-rc1

v1.20.0-rc0

v1.19.3

v1.19.2

v1.19.1

v1.19.0

v1.19.0-rc1

v1.20.0-dev

v1.19.0-rc0

v1.18.5

v1.18.4

v1.18.3

v1.18.2

v1.18.1

v1.18.0

v1.17.4

v1.18.0-rc1

v1.19.0-dev

v1.18.0-rc0

v1.17.3

v1.17.2

v1.17.1

v1.17.0

v1.17.0-rc2

v1.16.9

v1.17.0-rc1

v1.18.0-dev

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.11

v1.17.0-dev

v1.16.0-rc1

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.14.7

v1.15.0

v1.15.0-rc3

v1.14.6

v1.15.0-rc2

v1.14.5

v1.16.0-dev

v1.15.0-rc1

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.7

v1.14.0-rc2

v1.13.6

v1.13.5

v1.14.0-rc1

v1.15.0-dev

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.6

v1.13.0-rc2

v1.14.0-dev

v1.13.0-rc1

v1.12.5

v1.12.4

v1.12.3

v1.12.2

v1.12.1

v1.11.8

v1.12.0

v1.11.7

v1.12.0-rc2

v1.11.6

v1.12.0-rc1

v1.13.0-dev

v1.11.5

v1.11.4

v1.11.3

v1.10.6

v1.12.0-dev

v1.11.2

v1.10.5

v1.11.1

v1.10.4

v1.11.0

v1.11.0-rc2

v1.10.3

v1.11.0-rc1

v1.10.2

v1.10.1

v1.10.0

v1.9.6

v1.9.5

v1.10.0-rc2

v1.11.0-dev

v1.10.0-rc1

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc2

v1.10.0-dev

v1.9.0-rc1

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc3

v1.7.6

v1.8.0-rc2

v1.7.5

v1.8.0-rc1

v1.9.0-dev

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc3

v1.6.4

v1.7.0-rc2

v1.6.3

v1.7.0-rc1

v1.7.0-dev

v1.6.2

v1.6.1

v1.6.0

v1.6.0-rc2

v1.5.3

v1.6.0-rc1

v1.6.0-dev

v1.5.2

v1.5.1

v1.5.0

v1.5.0-rc2

v1.5.0-rc1

v1.5.0-dev

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc3

v1.4.0-rc2

v1.3.3

v1.4.0-rc1

v1.3.2

v1.3.1

v1.3.0

v1.3.0-rc2

v1.3.0-rc1

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc2

v1.1.4

v1.2.0-rc1

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

v0.9.99

Labels

Clear labels

$20

$250

$50

$500

backport/done

💎 Bounty

docs-update-needed

good first issue

hacktoberfest

issue/bounty

issue/confirmed

issue/critical

issue/duplicate

issue/needs-feedback

issue/not-a-bug

issue/regression

issue/stale

issue/workaround

lgtm/need 2

modifies/api

modifies/translation

outdated/backport/v1.18

outdated/theme/markdown

outdated/theme/timetracker

performance/bigrepo

performance/cpu

performance/memory

performance/speed

pr/breaking

proposal/accepted

proposal/rejected

pr/wip

pull-request

Mirrored from GitHub Pull Request

reviewed/wontfix

💰 Rewarded

skip-changelog

status/blocked

topic/accessibility

topic/api

topic/authentication

topic/build

topic/code-linting

topic/commit-signing

topic/content-rendering

topic/deployment

topic/distribution

topic/federation

topic/gitea-actions

topic/issues

topic/lfs

topic/mobile

topic/moderation

topic/packages

topic/pr

topic/projects

topic/repo

topic/repo-migration

topic/security

topic/theme

topic/ui

topic/ui-interaction

topic/ux

topic/webhooks

topic/wiki

type/bug

type/deprecation

type/docs

type/enhancement

type/feature

type/miscellaneous

type/proposal

type/question

type/refactoring

type/summary

type/testing

type/upstream

No Label type/feature type/proposal

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/gitea#10646