GitHub Action Rerunner

초무 @2chanhaeng@hackers.pub

GitHub Action Rerunner

A web application that delegates permission to team members to directly rerun failed GitHub Actions.

🎯 Why was it created?

When GitHub Actions fail, you need Write permission for the repository to rerun them. However, for security reasons, it's difficult to give Write permission to all team members.

GitHub Action Rerunner solves this problem. Once the repository owner registers a token, team members can rerun failed Actions for PRs assigned to them, allowing them to restart CI/CD without direct repository permissions!

✨ Key Features

Repository Owner

  • πŸ“¦ Register personal and organization repositories
  • πŸ”‘ Register GitHub Personal Access Tokens (stored encrypted)
  • πŸ”— Create shareable unique links
  • πŸ‘€ View and rerun all failed PRs
  • βš™οΈ Manage repository settings

Team Members (Assignees)

  • πŸ“‹ View list of PRs assigned to them
  • πŸ”„ One-click rerun of failed GitHub Actions
  • πŸ“Š Real-time workflow status monitoring

Account Management

  • πŸ” GitHub OAuth login
  • πŸ‘₯ Support for multiple GitHub account connections
  • πŸ”€ Easy switching between accounts

πŸ›  Tech Stack

  • Frontend: Next.js 16 (App Router), React 19, Tailwind CSS 4
  • Backend: Next.js API Routes
  • Authentication: NextAuth.js v5 (GitHub OAuth)
  • Database: PostgreSQL + Prisma ORM
  • GitHub API: Octokit

πŸš€ Deploy It Yourself

The project is already deployed, but since it handles sensitive tokens, you may want to deploy it yourself. Follow the guide below:

1. Repository pull

Pull the repository.

2. Environment Variable Setup

Create a .env file and set the following values:

# DB (PostgreSQL)
DATABASE_URL="postgresql://..."
DIRECT_URL="postgresql://..."

# NextAuth.js
AUTH_SECRET="use `npx auth secret`"
AUTH_GITHUB_ID="your-github-oauth-app-id"
AUTH_GITHUB_SECRET="your-github-oauth-app-secret"

# Token Encryption (32 characters)
ENCRYPTION_KEY="your-32-character-encryption-key"

3. Create GitHub OAuth App

  1. Create an OAuth App in GitHub Developer Settings
  2. Authorization callback URL: http://localhost:3000/api/auth/callback/github
  3. Set the Client ID and Client Secret in environment variables

4. Run Development Server 

# Install dependencies
pnpm install

# Generate Prisma client
npx prisma generate

# Database migration
npx prisma migrate dev

# Run development server
pnpm dev

Check it at http://localhost:3000.

πŸ“– How to Use

Register Repository (Owner)

  1. Login with GitHub
  2. Dashboard β†’ Register repository
  3. Select repository to register
  4. Register Personal Access Token in settings page
    • Token needs repo and actions permissions
  5. Share the generated link with team members

Rerun Actions (Team Members)

  1. Access the shared link
  2. Login with GitHub
  3. Check the list of PRs assigned to you
  4. Click the "Rerun" button next to failed workflows

πŸ”’ Security

  • Personal Access Tokens are stored encrypted with AES-256-GCM.
  • Team members can only rerun Actions for PRs assigned to them.
  • All API requests go through session-based authentication.
7
0
0

No comments

If you have a fediverse account, you can comment on this article from your own instance. Search https://hackers.pub/ap/articles/019abf2b-0d13-7fd4-afd8-d9f0851b8b4f on your instance and reply to it.