github-starred/gitea
2
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2026-03-22 22:45:27 -05:00
Code Issues 2.6k Packages Projects Releases 100 Wiki Activity

Cant run Gitea Actions from private Repo #11294

New Issue
Closed
opened 2025-11-02 09:33:35 -06:00 by GiteaMirror · 5 comments
GiteaMirror commented 2025-11-02 09:33:35 -06:00
Owner
Copy Link

Originally created by @Schrolli91 on GitHub (Jul 21, 2023).

Description

I have a private Repo with an example action.
Its totaly clear to me, that the runner can not clone this private repo without authentication.
So i use the checkout action with a personal access token and clone the action repo to the runner.
After that i try to run the action as follwing:

  - name: Check out repository code
    uses: actions/checkout@v3
    with:
      token: ${{ secrets.token }}
  - name: Hello world action step
    id: hello
    uses: ./

But this does not work.
I have seen, that the Github docs show exactly this tooling for private repos.
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#example-using-an-action-inside-a-different-private-repository-than-the-workflow

Also i cant find any clear instructions or documentation, how to deal with private repos in actions on gitea.

Gitea Version

1.20.0

Operating System

Debian Linux

How are you running Gitea?

Running via docker in an debian Linux hosted inside a VPS (LXC)

Originally created by @Schrolli91 on GitHub (Jul 21, 2023). ### Description I have a private Repo with an example action. Its totaly clear to me, that the runner can not clone this private repo without authentication. So i use the checkout action with a personal access token and clone the action repo to the runner. After that i try to run the action as follwing: ```yaml - name: Check out repository code uses: actions/checkout@v3 with: token: ${{ secrets.token }} - name: Hello world action step id: hello uses: ./ ``` But this does not work. I have seen, that the Github docs show exactly this tooling for private repos. https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#example-using-an-action-inside-a-different-private-repository-than-the-workflow Also i cant find any clear instructions or documentation, how to deal with private repos in actions on gitea. ### Gitea Version 1.20.0 ### Operating System Debian Linux ### How are you running Gitea? Running via docker in an debian Linux hosted inside a VPS (LXC)
GiteaMirror added the topic/gitea-actionstype/bugissue/duplicate labels 2025-11-02 09:33:35 -06:00
GiteaMirror commented 2025-11-02 09:33:36 -06:00
Author
Owner
Copy Link

@wolfogre commented on GitHub (Jul 21, 2023):

Have you set a right secret with token as the name?

Actually, you don't need to do this. The runner will get a temporary token to checkout the repo even it's private. Please try again without with:

  - name: Check out repository code
    uses: actions/checkout@v3
@wolfogre commented on GitHub (Jul 21, 2023): Have you set a right secret with `token` as the name? Actually, you don't need to do this. The runner will get a temporary token to checkout the repo even it's private. Please try again without `with:` ```yaml - name: Check out repository code uses: actions/checkout@v3 ```
GiteaMirror commented 2025-11-02 09:33:37 -06:00
Author
Owner
Copy Link

@Schrolli91 commented on GitHub (Jul 21, 2023):

secret is set and it can clone successful - without it cant (login on gitea instance is required).
The runner maybe can checkout the "repo under test". But what happens if i want to use a action, that is hosted in another private repo?

This is the job from the github hello world action (https://github.com/actions/hello-world-docker-action), hosted on my own gitea server.
The folowing code will fail:
image

jobs:
  hello_world_job:
    runs-on: ubuntu-latest
    name: A job to say hello
    steps:
      - name: Check out repository code
        uses: actions/checkout@v3
      - name: Hello world action step
        id: hello
        uses: https://gitea..####/actions/hello-world-docker-action@main
        with:
          who-to-greet: 'test action'
      - name: Get the output time
        run: echo "The time was ${{ steps.hello.outputs.time }}"
@Schrolli91 commented on GitHub (Jul 21, 2023): secret is set and it can clone successful - without it cant (login on gitea instance is required). The runner maybe can checkout the "repo under test". But what happens if i want to use a action, that is hosted in another private repo? This is the job from the github hello world action (https://github.com/actions/hello-world-docker-action), hosted on my own gitea server. The folowing code will fail: ![image](https://github.com/go-gitea/gitea/assets/6043382/225e90b1-5027-46d8-b53e-ded5ce6539c7) ```yaml jobs: hello_world_job: runs-on: ubuntu-latest name: A job to say hello steps: - name: Check out repository code uses: actions/checkout@v3 - name: Hello world action step id: hello uses: https://gitea..####/actions/hello-world-docker-action@main with: who-to-greet: 'test action' - name: Get the output time run: echo "The time was ${{ steps.hello.outputs.time }}" ```
GiteaMirror commented 2025-11-02 09:33:37 -06:00
Author
Owner
Copy Link

@wolfogre commented on GitHub (Jul 21, 2023):

So the point is that your runner failed with uses: https://gitea..####/actions/hello-world-docker-action@main.

Now it's duplicated with #25929

@wolfogre commented on GitHub (Jul 21, 2023): So the point is that your runner failed with `uses: https://gitea..####/actions/hello-world-docker-action@main`. Now it's duplicated with #25929
GiteaMirror commented 2025-11-02 09:33:37 -06:00
Author
Owner
Copy Link

@Schrolli91 commented on GitHub (Jul 21, 2023):

Clone via Personal Access Token is working. This can show me the content of my repo:

steps:
  - name: Check out repository code
    uses: actions/checkout@v3
    with:
      token: ${{ secrets.token }}
  - name: show local dir
    run: ls -lah
  - name: Hello world action step
    id: hello
    uses: ./
    with:
      who-to-greet: 'Test Action'
  - name: Get the output time
    run: echo "The time was ${{ steps.hello.outputs.time }}"

So my main question is, why running a action from local cloned content is not possible on the runner?
Github can reference the local dir in the uses: directive. This seems not to work in Gitea - is this correct?

image

@Schrolli91 commented on GitHub (Jul 21, 2023): Clone via Personal Access Token is working. This can show me the content of my repo: ``` steps: - name: Check out repository code uses: actions/checkout@v3 with: token: ${{ secrets.token }} - name: show local dir run: ls -lah - name: Hello world action step id: hello uses: ./ with: who-to-greet: 'Test Action' - name: Get the output time run: echo "The time was ${{ steps.hello.outputs.time }}" ``` So my main question is, why running a action from local cloned content is not possible on the runner? Github can reference the local dir in the `uses:` directive. This seems not to work in Gitea - is this correct? ![image](https://github.com/go-gitea/gitea/assets/6043382/3b38ba5c-1265-4b48-b06c-12e75fff7d9a)
GiteaMirror commented 2025-11-02 09:33:37 -06:00
Author
Owner
Copy Link

@wolfogre commented on GitHub (Jul 21, 2023):

So my main question is, why running a action from local cloned content is not possible on the runner?

It is not supported yet.

@wolfogre commented on GitHub (Jul 21, 2023): > So my main question is, why running a action from local cloned content is not possible on the runner? It is not supported yet.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
$20
$250
$50
$500
backport/done
💎 Bounty
docs-update-needed
good first issue
hacktoberfest
issue/bounty
issue/confirmed
issue/critical
issue/duplicate
issue/needs-feedback
issue/not-a-bug
issue/regression
issue/stale
issue/workaround
lgtm/need 2
modifies/api
modifies/translation
outdated/backport/v1.18
outdated/theme/markdown
outdated/theme/timetracker
performance/bigrepo
performance/cpu
performance/memory
performance/speed
pr/breaking
proposal/accepted
proposal/rejected
pr/wip
pull-request
Mirrored from GitHub Pull Request
 reviewed/wontfix
💰 Rewarded
skip-changelog
status/blocked
topic/accessibility
topic/api
topic/authentication
topic/build
topic/code-linting
topic/commit-signing
topic/content-rendering
topic/deployment
topic/distribution
topic/federation
topic/gitea-actions
topic/issues
topic/lfs
topic/mobile
topic/moderation
topic/packages
topic/pr
topic/projects
topic/repo
topic/repo-migration
topic/security
topic/theme
topic/ui
topic/ui-interaction
topic/ux
topic/webhooks
topic/wiki
type/bug
type/deprecation
type/docs
type/enhancement
type/feature
type/miscellaneous
type/proposal
type/question
type/refactoring
type/summary
type/testing
type/upstream
No Label issue/duplicate topic/gitea-actions type/bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/gitea#11294
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?