From 62b00181b282e65cf50a18af635273b7f8861610 Mon Sep 17 00:00:00 2001
From: Karel van de Plassche <karelvandeplassche@gmail.com>
Date: Thu, 16 Jan 2025 18:25:12 +0100
Subject: [PATCH] Try giving upload job write pages permission

See https://stackoverflow.com/questions/72504998/github-actions-unable-to-get-actions-id-token-request-url-env-variable
and https://docs.github.com/en/actions/security-for-github-actions/security-guides/automatic-token-authentication#permissions-for-the-github_token
---
 .github/workflows/sphinx-using-conda.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/sphinx-using-conda.yml b/.github/workflows/sphinx-using-conda.yml
index 629e508..dcf3757 100644
--- a/.github/workflows/sphinx-using-conda.yml
+++ b/.github/workflows/sphinx-using-conda.yml
@@ -55,6 +55,10 @@ jobs:
         # Upload entire HTML pages folder
         path: build/html/
   deploy:
+    permissions:
+      contents: read
+      pages: write
+      id-token: write
     environment:
       name: github-pages
       url: ${{ steps.deployment.outputs.page_url }}