Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Does this action work with RubyGems MFA? #19

Open
kennyadsl opened this issue Feb 3, 2023 · 1 comment
Open

Does this action work with RubyGems MFA? #19

kennyadsl opened this issue Feb 3, 2023 · 1 comment

Comments

@kennyadsl
Copy link

kennyadsl commented Feb 3, 2023
edited
Loading

Hello!

Rubygems strongly suggests using MFA for well known reasons.

From the same page, it seems like API keys are not able to bypass MFA:

Note: If you are on the UI only or UI and gem signin authentication level, you can selectively enable MFA on specific API keys (see API key scopes). This is different from the UI and API level as MFA is enabled on all API keys by default and cannot be selectively enabled.

Does this action support releasing done with MFA enabled? If it doesn't, I think it would be great to specify it in the README.

Thanks!
@balvig
Copy link

balvig commented Dec 17, 2023

@kennyadsl I randomly came by here with the same question. 😅

I think the solution might be using Trusted Publishers along with the official RubyGems GitHub action.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@balvig @kennyadsl