Release uploads, but job fails with weird error

Deployment
1

https://travis-ci.org/In-line/grip/jobs/519408681

/home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/response/raise_error.rb:16:in `on_complete’: GET https://api.github.com/user: 401 - Bad credentials // See: https://developer.github.com/v3 (Octokit::Unauthorized)

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/response.rb:9:in `block in call’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/response.rb:61:in `on_complete’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/response.rb:8:in `call’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/middleware/follow_redirects.rb:73:in `perform_with_redirection’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/middleware/follow_redirects.rb:61:in `call’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/rack_builder.rb:143:in `build_response’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/connection.rb:387:in `run_request’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/faraday-0.15.4/lib/faraday/connection.rb:138:in `get’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/sawyer-0.8.1/lib/sawyer/agent.rb:94:in `call’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/connection.rb:154:in `request’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/connection.rb:19:in `get’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/octokit-4.6.2/lib/octokit/client/users.rb:34:in `user’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-releases-1.10.8/lib/dpl/provider/releases.rb:58:in `user’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-releases-1.10.8/lib/dpl/provider/releases.rb:83:in `setup_auth’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-releases-1.10.8/lib/dpl/provider/releases.rb:87:in `check_auth’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/lib/dpl/provider.rb:187:in `block in deploy’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/lib/dpl/cli.rb:41:in `fold’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/lib/dpl/provider.rb:186:in `deploy’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/lib/dpl/cli.rb:32:in `run’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/lib/dpl/cli.rb:7:in `run’

from /home/travis/.rvm/gems/ruby-2.4.5/gems/dpl-1.10.8/bin/dpl:5:in `<top (required)>’

from /home/travis/.rvm/gems/ruby-2.4.5/bin/dpl:23:in `load’

from /home/travis/.rvm/gems/ruby-2.4.5/bin/dpl:23:in `<main>’

failed to deploy

2

GET https://api.github.com/user: 401 - Bad credentials // See: GitHub REST API documentation - GitHub Docs (Octokit::Unauthorized)

Are you sure your encrypted Github API key in .travis.yml is correct? Note that as per Encryption keys - Travis CI , Travis key pair is per-repository, so you need to somehow indicate to the travis encrypt command which key it is supposed to use (by either running the command in your project directory, or by passing -r).

3

hello :slight_smile:

today i setup a repo and got about the same error:
https://www.travis-ci.com/s-light/quasar_test/jobs/208717489#L532

/Users/travis/.rvm/gems/ruby-2.4.3/gems/octokit-4.6.2/lib/octokit/response/raise_error.rb:16:in `on_complete’: GET https://api.github.com/user: 401 - Bad credentials // See: GitHub REST API documentation - GitHub Docs (Octokit::Unauthorized)

but also this lead to a failed build -
the upload itself worked - its done by the electron-builder - but this means the GH_TOKEN set in the repository environment variable is correct…

image
image843×679 42.5 KB

is this a sort of timing problem that two services try to login at the same time?! or something similar?

iam new to all of this - so i am sure my experiments do not make full sens at the current state… :wink:

my .travis.yml just contains

language: node_js
node_js:
    - "12"

# https://docs.travis-ci.com/user/multi-os/
os:
    - linux
    - osx
dist: xenial

cache: yarn

addons:
  apt:
    packages:
        - libusb-1.0-0
        - libusb-1.0-0-dev
        - libudev-dev

before_deploy:
    - yarn release
deploy:
    provider: releases
    api_key: GH_TOKEN
    # file: "FILE TO UPLOAD"
    skip_cleanup: true
    draft: true
    # on:
#     tags: true

first i had accidentally setup my repor with https://travis-ci.org/
after i found some mentionings that this error message can have to do with the move to travis-ci.com i moved my experiment to the .com version…
but this did not fix it…

hope anyone can give me a hint why this error appears.

sunny greetings
stefan

4

Your API key is plain GH_TOKEN


which is most definitely incorrect.

If you have it set correctly https://www.travis-ci.com/s-light/quasar_test/jobs/208717488#L216, you’d want $GH_TOKEN in the file instead.

1 Like
5

thanks!!:blush:
yeah that makes sens!!!

6

Same issue, one more time https://travis-ci.org/In-line/grip/jobs/558302441

7

Please, fix this bug already. It’s really annoying that you have 0 steps bugs.

8

Your credentials are ostensibly encrypted https://github.com/In-line/grip/blob/22b82a3ecd7aa5d9828266fdc2c31c10fcfbf762/.travis.yml#L104-L105 So it’s a separate issue. As was brought up many times before, I encourage you to review documentation and try again. You may also use the settings page https://travis-ci.org/In-line/grip/settings to set an env var, which you will use in .travis.yml (with a leading $, of course).

You might be frustrated that the things aren’t working as you expect, but there is no bug here.

9

Hi. I encourage you to actually read this topic. Token is encrypted and correct . GitHub Releases 1) Sometimes work,
2) Sometimes they work, but Travis job fails with this message
3) Sometimes job just fails randomly with no reason and release isn’t uploaded (same error message)

So there is a bug. It’s not fixed and didn’t got attention after more than month.

10

I don’t know, whether this is GitHub bug or Travis bug. I just report that there is a problem.

Original bug is with encrypted token. I don’t know why somebody marked this as solved, because random guy wrote here about another, unrelated problem with similar message.

11

So please, give appropriate response. Thanks in advance.

12

I can confirm you that your secret given in https://github.com/In-line/grip/blob/22b82a3ecd7aa5d9828266fdc2c31c10fcfbf762/.travis.yml#L105 is wrong; it does not decrypt with the private key that we have on travis-ci.org.

You can try passing the -r flag (https://docs.travis-ci.com/user/encryption-keys#usage) or use the settings page to set the environment variable you would refer to in .travis.yml.

13

So you don’t care that you have serious security issue? So you, that anybody can upload GitHub release without API token. So my jobs uploaded release with wrong token.
Maybe I can change repo in .travis.yml to torvalds/linux and upload release with malicious code if token isn’t checked?

14

All my releases in GitHub are uploaded with Travis job and this token. So, please take apropriate action if this is security issue, when token isn’t checked.

15

Your releases are running from https://travis-ci.com. For example, https://travis-ci.org/In-line/grip/jobs/519408681

This explains why the credentials are wrong on travis-ci.org and you get the releases uploaded correctly.

There is a confusion about .org and .com, for which we apologize, but there is no security issue here.

I suggest disabling builds on .org. https://travis-ci.org/account/repositories