Skip to content

feat: add useOidcTokenProvider config option #1029

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
sarahdayan merged 6 commits into from
Feb 3, 2026
Merged

feat: add useOidcTokenProvider config option #1029

sarahdayan merged 6 commits into from
Feb 3, 2026

Conversation

@sarahdayan
Copy link
Member

@sarahdayan sarahdayan commented Feb 3, 2026
edited
Loading

Summary

  • Add useOidcTokenProvider config option that skips npm config set for the auth token
  • When enabled, allows publishing with npm's OIDC trusted publishing (e.g., via GitHub Actions' native npm publishing)

Closes #1014

Sarah Dayan and others added 2 commits February 3, 2026 15:21
@claude
feat: add useOidcTokenProvider config option (#1014)
5f52493 
Add support for npm's OIDC trusted publishing by skipping the
npm config set step when useOidcTokenProvider is enabled.

Co-Authored-By: Claude Opus 4.5 <[email protected]>
@sarahdayan
Merge branch 'main' into feat/oidc
dc9953a
@sarahdayan sarahdayan requested review from a team, Haroenv, aymeric-giraudet and dhayab and removed request for a team February 3, 2026 14:25
dhayab
dhayab approved these changes Feb 3, 2026
View reviewed changes
Copy link
Member

@dhayab dhayab left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good. Could be worth checking for or repeating the need to set

permissions:
  id-token: write  # Required for OIDC
  contents: read

in the GitHub action. Maybe updating the page at https://community.algolia.com/shipjs/guide/getting-started.html#setup-github-actions ?

Haroenv
Haroenv reviewed Feb 3, 2026
View reviewed changes
Copy link
Contributor

@Haroenv Haroenv left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good but needs doc indeed

@sarahdayan sarahdayan requested review from Haroenv and dhayab February 3, 2026 16:32
@sarahdayan
Copy link
Member Author

sarahdayan commented Feb 3, 2026

Added!

@sarahdayan sarahdayan merged commit b54d736 into main Feb 3, 2026
2 checks passed
@sarahdayan sarahdayan deleted the feat/oidc branch February 3, 2026 17:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aymeric-giraudet aymeric-giraudet Awaiting requested review from aymeric-giraudet aymeric-giraudet was automatically assigned from algolia/frontend-experiences-web

@dhayab dhayab Awaiting requested review from dhayab

@Haroenv Haroenv Awaiting requested review from Haroenv

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Work with OIDC authentication

4 participants

@sarahdayan @dhayab @Haroenv