Skip to content

Enable the use of different actors in rule sets #2588

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Enable the use of different actors in rule sets #2588

wants to merge 1 commit into from

Conversation

morfien101
Copy link

This PR attempts to resolve an issue where the provider is not able to create bypass rules that don't use the explicit values set in this provider. The provider itself is out of date. There is no need for the provider to do the check as the API and helps will do the checks for us.

Resolves #2254

Before the change?

Users would not be able to make a bypass rule that uses something like a DeployKey

  bypass_actors {
    actor_type  = "DeployKey"
    bypass_mode = "always"
  }

After the change?

Users can make any bypass rule that is accepted by the API

Pull request checklist

  • Tests for the changes have been added (for bug fixes / features)
  • Docs have been reviewed and added / updated if needed (for bug fixes / features)

Does this introduce a breaking change?

No breaking changes. I expect it to be fully backwards compatible with the current config in the wild.

See it working here
github_terraform_DeployKey

@morfien101
Leave it to the API to determine if the values for actor_types are va…
dedde03 
…lid of not. These change over time and we would need to carry a list in code to verify this.

Do not require an actor_id on rule bypasses. Things like DeployKey do not have an id.
@randy-coburn-zeam randy-coburn-zeam mentioned this pull request Mar 11, 2025
Open
@morfien101
Copy link
Author

@kfcampbell Any chance you can have a look at this please. We would like to start making use of it but having to keep a separate copy of the provider is a pain.
Tagging you since you reviewed the previous attempt for this feature.

@nickfloyd nickfloyd moved this from 🆕 Triage to 👀 In review in 🧰 Octokit Active Jun 3, 2025
augustasvilc
augustasvilc reviewed Jun 19, 2025
View reviewed changes
github/resource_github_repository_ruleset.go
Description: "The ID of the actor that can bypass a ruleset. When `actor_type` is `OrganizationAdmin`, this should be set to `1`.",
Optional: true,
Default: nil,
Description: "The ID of the actor that can bypass a ruleset. When `actor_type` is `OrganizationAdmin`, this should be set to `1`. Some resources such as DeployKey do not have an ID and this should be omitted.",
},
"actor_type": {
Type: schema.TypeString,
Required: true,
ValidateFunc: validation.StringInSlice([]string{"RepositoryRole", "Team", "Integration", "OrganizationAdmin"}, false),
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
ValidateFunc: validation.StringInSlice([]string{"RepositoryRole", "Team", "Integration", "OrganizationAdmin"}, false),
ValidateFunc: validation.StringInSlice([]string{"RepositoryRole", "Team", "Integration", "OrganizationAdmin", "DeployKey"}, false),

@joshdk
Copy link

joshdk commented Jul 7, 2025

It would be very nice to get this PR updated and merged :)

@dsdeboer
Copy link

It would be very nice to get this PR updated and merged :)

@morfien101 should I help you out?

@languitar languitar mentioned this pull request Aug 11, 2025
Open
4 tasks
@languitar
Copy link

I've taken the liberty to update this in #2726

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
1 more reviewer

@augustasvilc augustasvilc augustasvilc left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[FEAT]: Add DeployKey to bypass_actors in github_organization_ruleset and github_repository_ruleset
5 participants
@morfien101 @joshdk @dsdeboer @languitar @augustasvilc