Release aborted - bad credentials

brucellino · November 27, 2018, 5:47pm

hi there,

I have a strange problem with a deploy. The job is https://travis-ci.org/EGI-Foundation/glite-info-update-endpoints/jobs/460371411

The error I’m seeing is :

/home/travis/.rvm/gems/ruby-2.4.1/gems/octokit-4.6.2/lib/octokit/response/raise_error.rb:16:in `on_complete': GET https://api.github.com/user: 401 - Bad credentials // See: https://developer.github.com/v3 (Octokit::Unauthorized)

It’s wierd, because this job has triggered deploys previously on releases. I suspect that since the credentials in the travis.yml do not belong to me, they were not exposed by the job.

Would this be a correct interpretation?

Would the solution to share them in the job configuration via the web interface then?

Thanks!
Bruce

BanzaiMan · November 27, 2018, 7:11pm

The private key that decrypts the secret belongs to the repository, so as long as the build happens on the correct repository, the deployment code will have access to the API token.

If the deployment is now failing, but was succeeding 2 months ago, then my first guess is that the token has since seen revoked by the token owner.

brucellino · November 28, 2018, 4:14am

Thanks very much!

I am waiting for confirmation on this from my colleague. I just wanted to sure that there are no other sources of this behaviour. Github has been moving away from Services and towards Apps. We are using the Travis.org integration for Github which, as far as I can tell, is a Github service. Is it possible that the Travis service is denied access to (the release) parts of the Github API? I highly doubt this, but want to ask for future reference.

Thanks!

BanzaiMan · November 28, 2018, 3:07pm

Our deployment happens outside of the direct GitHub integration points (neither Services nor Apps is involved here). In the case of GitHub Releases, it is carried out with relevant git commands and GitHub Releases API using their Ruby client. If deployment is denied, it is due to the wrong credentials your deployment is providing. I do not think we changed anything in the time frame you mentioned, thus I am inclined to think that the change came from the token’s validity.

nguoianphu · March 6, 2020, 8:42am

Hi all,

My build is having same error. But I haven’t changed .travis.yml nor Github token.

Passed build (old, 7 months ago): https://travis-ci.org/nguoianphu/cordova-builder/builds/562533817

Comparing the build logs show us the difference version of dpl-releases. The passed build had dpl-releases-1.10.12, while the failure has dpl-releases-1.10.15.

Failure build: https://travis-ci.org/nguoianphu/cordova-builder/builds/659026968#L3330

Installing deploy dependencies
Successfully installed multipart-post-2.1.1
...
Parsing documentation for dpl-releases-1.10.15
Installing ri documentation for dpl-releases-1.10.15
Done installing documentation for multipart-post, faraday, public_suffix, addressable, sawyer, octokit, mime-types-data, mime-types, dpl-releases after 4 seconds
9 gems installed
/home/travis/.rvm/gems/ruby-2.4.1/gems/octokit-4.6.2/lib/octokit/response/raise_error.rb:16:in `on_complete': GET https://api.github.com/user: 401 - Bad credentials // See: https://developer.github.com/v3 (Octokit::Unauthorized)
	from /home/travis/.rvm/gems/ruby-2.4.1/gems/faraday-0.15.4/lib/faraday/response.rb:9:in `block in call'
	from /home/travis/.rvm/gems/ruby-2.4.1/gems/faraday-0.15.4/lib/faraday/response.rb:61:in `on_complete'
...
	from /home/travis/.rvm/gems/ruby-2.4.1/bin/dpl:23:in `<main>'
Preparing deploy
failed to deploy

BanzaiMan · March 6, 2020, 1:24pm

github.com

nguoianphu/cordova-builder/blob/f3d9cb713ab086e126a36ef39bf70e9010d5fc3c/.travis.yml#L81


      
            - export APK_NAME=${APP_NAME}-${APP_VERSION_CURRENT}-${DATE}-${GIT_COMMIT}
            - export APK_NAME=${APK_NAME// /}
            # - export TRAVIS_TAG=${TRAVIS_TAG:-$(date +'%Y%m%d%H%M%S')-$(git log --format=%h -1)}
            - export TRAVIS_TAG=${TRAVIS_TAG:-${APK_NAME}}
            - git tag ${TRAVIS_TAG// /}
            - git tag -l
            - cp $TRAVIS_BUILD_DIR/platforms/android/app/build/outputs/apk/debug/app-debug.apk $TRAVIS_BUILD_DIR/${APK_NAME// /}.apk
          deploy:
            provider: releases
            api_key:
              secure: $YOUR_API_KEY_ENCRYPTED
            file: "$TRAVIS_BUILD_DIR/${APK_NAME// /}.apk"
            skip_cleanup: true
            on:
              all_branches: true

Your problem is explained here.

nguoianphu · March 8, 2020, 10:54am

Great! Thank you @BanzaiMan. My probelm is solved.

MatiasVara · April 26, 2020, 3:11pm

Hello, I am having a similar issue at https://travis-ci.org/github/torokernel/torokernel. I wonder if it is the same problem. I am currently using github tokens for the deployment which is passed as an environment variable to Travis. Do I need to encrypt such token before set it as an env variable ? Or I am missing something.

Topic		Replies	Views
Deploy error - bad credentials Deployment	2	1488	November 22, 2019
GitHub returns 401 (Unauthorized) when I'm deploying to GitHub releases Deployment github-releases	7	3522	December 22, 2018
401 - Bad credentials (Octokit::Unauthorized) Deployment	2	2464	October 8, 2019
401 Bad credentials - Private repo build failing Travis CI Discussions & Feedback	11	662	April 17, 2020
GET https://api.github.com/user: 401 - Bad credentials Travis CI Discussions & Feedback	8	3157	August 14, 2021

Release aborted - bad credentials

Related Topics