twine-upload: increase detail on console notices

Signed-off-by: William Woodruff <william@trailofbits.com>

Co-authored-by: Sviatoslav Sydorenko <wk.cvs.github@sydorenko.org.ua>
This commit is contained in:
William Woodruff 2023-03-22 10:41:35 -04:00
parent f3ce18f699
commit ae295504b3
No known key found for this signature in database

View file

@ -43,8 +43,19 @@ INPUT_PRINT_HASH="$(get-normalized-input 'print-hash')"
if [[ "${INPUT_USER}" == "__token__" && -z "${INPUT_PASSWORD}" ]] ; then if [[ "${INPUT_USER}" == "__token__" && -z "${INPUT_PASSWORD}" ]] ; then
# No password supplied by the user implies that we're in the OIDC flow; # No password supplied by the user implies that we're in the OIDC flow;
# retrieve the OIDC credential and exchange it for a PyPI API token. # retrieve the OIDC credential and exchange it for a PyPI API token.
echo "::notice::In OIDC flow" echo \
'::notice::Attempting to perform OIDC credential exchange ' \
'to retrieve a temporary short-lived API token for authentication ' \
"against ${INPUT_REPOSITORY_URL}"
INPUT_PASSWORD="$(python /app/oidc-exchange.py)" INPUT_PASSWORD="$(python /app/oidc-exchange.py)"
elif [[ "${INPUT_USER}" == '__token__' ]]; then
echo \
'::notice::Using a user-provided API token for authentication ' \
"against ${INPUT_REPOSITORY_URL}"
else
echo \
'::notice::Using a username + password pair for authentication ' \
"against ${INPUT_REPOSITORY_URL}}"
fi fi
if [[ if [[