Adjust defaults

Use GITHUB_TOKEN for token

Author: pauldraper

README.md

@@ -2,45 +2,31 @@
 
 Trigger other workflows, display a link, and optionally wait for the result.
 
-## Usage
+## Examples
 
-### Inputs
+See [Usage](#usage) for full documentation.
 
-| Name         | Description                                        | Required | Default            |
-| ------------ | -------------------------------------------------- | -------- | ------------------ |
-| inputs       | JSON object of inputs                              | No       | {}                 |
-| marker-input | Name of the downstream's input for upstream URL.   | No       |                    |
-| owner        | Repsitory owner name                               | No       | Current owner      |
-| ref          | Git reference                                      | No       | Current ref        |
-| repo         | Repository name                                    | No       | Current repository |
-| token        | Personal access token                              | Yes      |                    |
-| wait         | Whether to wait for conclusion                     | No       | false              |
-| workflow     | Workflow path in .github/workflows (e.g. main.yml) | Yes      |
+### Same repository
 
-### Outputs
-
-| Name       | Description                          |
-| ---------- | ------------------------------------ |
-| conclusion | Workflow conclusion, if wait is true |
-| run_id     | Workflow run ID                      |
-
-### Marker step
-
-The Github API does not provide a direct association between a workflow dispatch
-and the subsequent workflow run. For greater robustness in determining the
-relationship, the upstream URL can be used as an input. _The downstream workflow
-must use that value as the name of a step._ (See [example](#marker-step-1).)
+**upstream.yml**
 
-### Personal access token
+```yml
+job:
+  example:
+    steps:
+      - use: pauldraper/[email protected]
+        with:
+          inputs: '{"color": "blue"}'
+          workflow: downstream.yml
+```
 
-A personal access token is required with read/write permissions for actions on
-the downstream repo. (Note: The default `GITHUB_TOKEN` does not have sufficient
-permissions.) See
-[Creating a personal access token](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token).
+**downstream.yml**
 
-## Examples
+```yml
+on: [workflow_dispatch]
+```
 
-### Basic
+### Different repository, and wait for finish
 
 **upstream.yml**
 
@@ -51,10 +37,10 @@ job:
       - use: pauldraper/[email protected]
         with:
           inputs: '{"color": "blue"}'
-          owner: example
           ref: refs/head/main
-          repo: example
-          token: "${{ secrets.GH_TOKEN }}"
+          repo: example/example
+          token: ${{ secrets.GH_TOKEN }}
+          wait: "true"
           workflow: downstream.yml
 ```
 
@@ -75,7 +61,7 @@ job:
       - use: pauldraper/[email protected]
         with:
           marker-input: upstream-url
-          token: "${{ secrets.GH_TOKEN }}"
+          workflow: downstream.yml
 ```
 
 **downstream.yml**
@@ -84,8 +70,8 @@ job:
 jobs:
   example:
     steps:
-      - if: "${{ inputs.upstream-url }}"
-        name: "${{ inputs.upstream-url }}"
+      - if: ${{ inputs.upstream-url }}
+        name: ${{ inputs.upstream-url }}
         run:
           echo 'Started by [${{ inputs.upstream-url }}](${{ inputs.upstream-url
           }})' >> "$GITHUB_STEP_SUMMARY"
@@ -95,3 +81,44 @@ on:
       upstream-url:
         description: URL of upstream run
 ```
+
+## Usage
+
+### Inputs
+
+| Name         | Description                                        | Required | Default                          |
+| ------------ | -------------------------------------------------- | -------- | -------------------------------- |
+| inputs       | JSON object of inputs                              | No       | `{}`                             |
+| marker-input | Name of the downstream's input for upstream URL.   | No       | ``                               |
+| owner        | Repsitory owner name                               | No       | `${{ github.repository_owner }}` |
+| ref          | Git reference                                      | No       | `${{ github.ref }}`              |
+| repo         | Repository name                                    | No       | `${{ github.repository }}`       |
+| token        | Personal access token                              | No       | `${{ github.token }}`            |
+| wait         | Whether to wait for conclusion                     | No       | `false`                          |
+| workflow     | Workflow path in .github/workflows (e.g. main.yml) | Yes      | ``                               |
+
+### Outputs
+
+| Name       | Description                          |
+| ---------- | ------------------------------------ |
+| conclusion | Workflow conclusion, if wait is true |
+| run_id     | Workflow run ID                      |
+
+### Marker step
+
+The Github API does not provide a direct association between a workflow dispatch
+and the subsequent workflow run. For greater robustness in determining the
+relationship, the upstream URL can be used as an input. The downstream workflow
+must use that value as the name of a step, so that the action can find it. (See
+[example](#marker-step-1).)
+
+### Token
+
+`GITHUB_TOKEN` must have read/write actions permissions. See
+[Permissions for the `GITHUB_TOKEN`](https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token).
+
+When starting workflows in other repos, you must create a personal access token
+and provide it as the `token` input. See
+[Creating a personal access token](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token)
+and
+[Encrypted Secrets](https://docs.github.com/en/actions/security-guides/encrypted-secrets).

action.yml

@@ -11,21 +11,22 @@ inputs:
   marker-input:
     description: Name of input for this workflow's URL
   repo:
-    description: Repository name
-  owner:
-    description: Owner name
+    default: ${{ github.repository }}
+    description: Repository owner and name
   ref:
+    default: ${{ github.ref }}
     description: Ref
   token:
+    default: ${{ github.token }}
     description:
       Personal access token, see
       https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token
-    required: true
   wait:
     default: "false"
     description: Whether to wait for
   workflow:
     description: Workflow file path
+    required: true
 outputs:
   conclusion:
     description: Conclusion of workflow run

tools/file/files.bazel

@@ -5,11 +5,6 @@ filegroup(
     srcs = glob(["files/**/*.bazel", "files/**/*.bzl"]),
 )
 
-filegroup(
-    name = "eslint_files",
-    srcs = glob(["files/**/*.js"]),
-)
-
 filegroup(
     name = "prettier_files",
     srcs = glob(

workflow-dispatch/dist/main.js

@@ -16235,6 +16235,14 @@ function getJsonInput(name) {
         }
     }
 }
+function getRepoInput(name) {
+    const text = coreExports.getInput(name);
+    const match = text.match(/^([^/]+)\/([^/]+)$/);
+    if (!match) {
+        throw new ActionError(`Invalid GitHub repository`);
+    }
+    return { owner: match[1], repo: match[2] };
+}
 function workflowRunAttemptUrl(server, owner, repo, runId, runAttempt) {
     return `${workflowRunUrl(server, owner, repo, runId)}/attempts/${runAttempt}`;
 }
@@ -29896,12 +29904,11 @@ if (typeof crypto === "undefined") {
 async function main() {
     const inputs = getJsonInput("inputs");
     const markerInput = coreExports.getInput("marker-input");
-    const owner = coreExports.getInput("owner") || context.repo.owner;
-    const ref = coreExports.getInput("ref") || context.ref;
-    const repo = coreExports.getInput("repo") || context.repo.repo;
-    const token = coreExports.getInput("token", { required: true });
+    const ref = coreExports.getInput("ref");
+    const { owner, repo } = getRepoInput("repo");
+    const token = coreExports.getInput("token");
     const wait = getBooleanInput("wait");
-    const workflow = coreExports.getInput("workflow", { required: true });
+    const workflow = coreExports.getInput("workflow");
     const octokit = new Octokit({ auth: token });
     let dispatcher;
     if (markerInput) {

workflow-dispatch/src/action.ts

@@ -30,6 +30,15 @@ export function getJsonInput(name: string) {
   }
 }
 
+export function getRepoInput(name: string): { owner: string; repo: string } {
+  const text = getInput(name);
+  const match = text.match(/^([^/]+)\/([^/]+)$/);
+  if (!match) {
+    throw new ActionError(`Invalid GitHub repository`);
+  }
+  return { owner: match[1], repo: match[2] };
+}
+
 export function workflowRunAttemptUrl(
   server: string,
   owner: string,

workflow-dispatch/src/main.ts

@@ -12,6 +12,7 @@ import {
   currentUrl,
   getBooleanInput,
   getJsonInput,
+  getRepoInput,
   workflowRunAttemptUrl,
 } from "./action";
 import { ActionError } from "./core";
@@ -30,12 +31,11 @@ if (typeof crypto === "undefined") {
 async function main() {
   const inputs = getJsonInput("inputs");
   const markerInput = getInput("marker-input");
-  const owner = getInput("owner") || context.repo.owner;
-  const ref = getInput("ref") || context.ref;
-  const repo = getInput("repo") || context.repo.repo;
-  const token = getInput("token", { required: true });
+  const ref = getInput("ref");
+  const { owner, repo } = getRepoInput("repo");
+  const token = getInput("token");
   const wait = getBooleanInput("wait");
-  const workflow = getInput("workflow", { required: true });
+  const workflow = getInput("workflow");
 
   const octokit = new Octokit({ auth: token });