Github_token in github action needs sso authorization?


My organisation has SSO authorisation turned on. When we create a PAT, we need to SSO authorize the token.

But in github action, I don’t know if the GITHUB_TOKEN provided in the environment needs SSO authorize too and how to do it.

My organisation also has some docker images stored in GHCR under the organisation’s account. So we need to login to pull those images. In github action, if I use the token provided by the environment, I got unauthorized error when trying to pull those images; but I can pull those images with a PAT I craeted and SSO authorized.

So, I am wondering if we need so special way to SSO authorize those tokens or there’s some setting in the organisation that would allow using those tokens from github action even they are not SSO authorized.