Merge pull request #122 from colindean/empty-token

This patch implements displaying a warning when the password
input passed in to the action is empty.
This commit is contained in:
Sviatoslav Sydorenko 2023-03-10 20:39:33 +01:00 committed by GitHub
commit 32b5e93709
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 19 additions and 9 deletions

View File

@ -23,15 +23,25 @@ if [[
! "$INPUT_PASSWORD" =~ ^pypi- ! "$INPUT_PASSWORD" =~ ^pypi-
]] ]]
then then
echo \ if [[ -z "$INPUT_PASSWORD" ]]; then
::warning file='# >>' PyPA publish to PyPI GHA'%3A' \ echo \
POTENTIALLY INVALID TOKEN \ ::warning file='# >>' PyPA publish to PyPI GHA'%3A' \
'<< ':: \ EMPTY TOKEN \
It looks like you are trying to use an API token to \ '<< ':: \
authenticate in the package index and your token value does \ It looks like you have not passed a password or it \
not start with '"pypi-"' as it typically should. This may \ is otherwise empty. Please verify that you have passed it \
cause an authentication error. Please verify that you have \ directly or, preferably, through a secret.
copied your token properly if such an error occurs. else
echo \
::warning file='# >>' PyPA publish to PyPI GHA'%3A' \
POTENTIALLY INVALID TOKEN \
'<< ':: \
It looks like you are trying to use an API token to \
authenticate in the package index and your token value does \
not start with '"pypi-"' as it typically should. This may \
cause an authentication error. Please verify that you have \
copied your token properly if such an error occurs.
fi
fi fi
if ( ! ls -A ${INPUT_PACKAGES_DIR%%/}/*.tar.gz &> /dev/null && \ if ( ! ls -A ${INPUT_PACKAGES_DIR%%/}/*.tar.gz &> /dev/null && \