From 6c9bffcaa05bf4abc4d4d9d2848a877308c198b4 Mon Sep 17 00:00:00 2001
From: Athanasius <github@miggy.org>
Date: Tue, 28 Jul 2020 17:11:16 +0100
Subject: [PATCH] Don't run flake8_annotate if no access

This is using github.actor and checking who it is.  If they're not
someone who should have access then use a run with 'exit 1' to fail the
check job.

Then flake8_annotate job needs check_access to have succeeded.

This *will* flag the workflow action as failed if no access, hopefully
it will be obvious why.

Using 'AthanasiusTEST' so it fails for me on this commit/push.
---
 .github/workflows/pr-annotate-with-flake8.yml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/pr-annotate-with-flake8.yml b/.github/workflows/pr-annotate-with-flake8.yml
index 6b5e0ed2..58d2fc4d 100644
--- a/.github/workflows/pr-annotate-with-flake8.yml
+++ b/.github/workflows/pr-annotate-with-flake8.yml
@@ -11,18 +11,23 @@ on:
     branches: [ develop ]
 
 jobs:
+  check_access:
+    steps:
+      -name: Check annotation access
+       if: ${{ github.actor != 'AthanasiusTEST' }}
+       run: exit 1
+
   flake8_annotate:
+    needs: check_access
     runs-on: ubuntu-18.04
 
     steps:
       - name: Checkout
-        if: ${{ github.actor == 'Athanasius' }}
         uses: actions/checkout@v2
         with:
           fetch-depth: 0
 
       - name: Check for PY files
-        if: ${{ github.actor == 'Athanasius' }}
         env:
           BASE_REF: ${{github.base_ref}}
         run: |
@@ -32,14 +37,12 @@ jobs:
           echo "::set-env name=PYFILES::${PYFILES}"
 
       - name: Set up Python 3.7
-        if: ${{ github.actor == 'Athanasius' }}
         if: ${{ env.PYFILES != '' }}
         uses: actions/setup-python@v2
         with:
           python-version: 3.7
 
       - name: Annotate with Flake8
-        if: ${{ github.actor == 'Athanasius' }}
         if: ${{ env.PYFILES != '' }}
         uses: "tayfun/flake8-your-pr@master"
         env: