private github packages all of a sudden not installing with known working github access token
Anonymous
FREEOP

5 months ago

I have known working github packages token getting 403, was working yesterday, tried with fresh token.

Confirmed working with curl -H "Authorization: Bearer ghp_xxxxx" \

"https://npm.pkg.github.com/@redacted" locally, but when installing I get this error:

 ERR_PNPM_FETCH_403  GET https://npm.pkg.github.com/download/@redacted: Forbidden - 403

An authorization header was used: Bearer ghp_[hidden]

These authorization settings were found:

@jsr:registry=https://npm.jsr.io/

@redacted:registry=https://npm.pkg.github.com

//npm.pkg.github.com/:authToken=ghp[hidden]

Is there some work around for this?

Solved

29 Replies

Anonymous
FREEOP

5 months ago

1466876429160550572

1466876430133493780

1466876430582288546


Anonymous
FREEOP

5 months ago

this guy should get banned from station threads, he's trying to cherry pick github issues to farm bounties.


Anonymous
FREEOP

5 months ago

he responded within only 2 minutes of the thread being auto toggled to public.


Anonymous
FREEOP

5 months ago

1466876837828493676


5 months ago

Link?



Anonymous
FREEOP

5 months ago

I do seriously need to figure out a work around for this issue though <:pepe_sweat:786868788560920576>


5 months ago

Just to confirm it, it works locally but stopped working on Railway since yesterday?


Anonymous
FREEOP

5 months ago

Correct.

The direct curl from local with the same Bearer railway is using works, but the installation fails here in railway all of a sudden.


Anonymous
FREEOP

5 months ago

I even tried temporarily subbing in a token with higher access scope, no dice.


Anonymous
FREEOP

5 months ago

I have a root .npmrc that is being fed by the services env variables


Anonymous
FREEOP

5 months ago

Haven’t had any issues until now, no major changes to the package / org permissions upstream.


Anonymous
FREEOP

5 months ago

Hmm maybe I can try changing the region of the service for now? Giving it a shot.


Anonymous
FREEOP

5 months ago

@uxuz no luck in changing regions


5 months ago

Can you create a new private repository and deploy it with this Dockerfile being the only thing in the said repo?

FROM alpine:latest

RUN apk add --no-cache curl

RUN curl -fsS -o /dev/null -L \
    -H "Authorization: Bearer ..." \
    -w "HTTP Status: %{http_code}\n" \
    https://example.com

CMD ["echo", "done"]

Insert additional headers and authorization headers as needed, also replace the URL with the actual one as opposed to example.com.


Anonymous
FREEOP

5 months ago

sure


5 months ago

This should log the http status in your build logs.

1466884732280111186


Anonymous
FREEOP

5 months ago

interesting, it responded 200 there.


Anonymous
FREEOP

5 months ago

did something change with pre install env injections?


Anonymous
FREEOP

5 months ago

well no, it looks like it is working properly:

⁨⁨```

An authorization header was used: Bearer ghp[hidden]

These authorization settings were found:

@jsr:registry=https://npm.jsr.io/

@opengameprotocol:registry=https://npm.pkg.github.com

//npm.pkg.github.com/:authToken=ghp[hidden]⁩

this is the shape of my .npmrc:

⁩@opengameprotocol:registry=https://npm.pkg.github.com //npm.pkg.github.com/:_authToken=${GITHUB_PACKAGES_TOKEN} always-auth=true


Anonymous
FREEOP

5 months ago

GITHUB_PACKAGES_TOKEN is in the services env variables


5 months ago

Hmm, I wonder if the metal build environment has anything to do with this, can you check if the affected service has it enabled/disabled (it can be found in the service's settings)?


Anonymous
FREEOP

5 months ago

ah sorry i edited it to make sure you didn't think it actually logged redacted and it mogged the code block lol


Anonymous
FREEOP

5 months ago

yeah i tried flipping that on and off



Anonymous
FREEOP

5 months ago

i have a build running now


Anonymous
FREEOP

5 months ago

ah, okay sorry for wasting your guys time...

I think I found the issue, the metadata endpoint works but the download is blocked by billing on our end <:cryfistsq:1238327748464873472>


Anonymous
FREEOP

5 months ago

my bad


5 months ago

No worries, glad you figured it out <:salute:1137099685417451530>


Status changed to Solved uxuz 5 months ago


Welcome!

Sign in to your Railway account to join the conversation.

Loading...