Why does the CI/CD job token authentication error occur when I run a pipeline?

Cloud with raindrops and a plus sign, symbolizing increased cloud storage or weather app.

Date Published: May 30, 2025

When you run a pipeline, authentication by CI/CD job token may not occur if the workflow project exists in another private group that does not grant access. In this case, the system displays the following error:

Cloning into '/workflow'...
remote: Authentication by CI/CD job token not allowed.
fatal: unable to access 'https://code.acquia.io/workflow/': The requested URL returned error: 403

Solution
To resolve this issue:

Go to the project settings at <project-path>/-/settings/ci_cd#js-token-access.
In Job token permission, locate CI/CD job token allowlist and add the required group or projects to the allowlist.
Trigger a new pipeline.

Date Published: May 30, 2025

Cloning into '/workflow'...
remote: Authentication by CI/CD job token not allowed.
fatal: unable to access 'https://code.acquia.io/workflow/': The requested URL returned error: 403

Solution
To resolve this issue:

Go to the project settings at <project-path>/-/settings/ci_cd#js-token-access.
In Job token permission, locate CI/CD job token allowlist and add the required group or projects to the allowlist.
Trigger a new pipeline.