github.OrganizationRuleset
Explore with Pulumi AI
Creates a GitHub organization ruleset.
This resource allows you to create and manage rulesets on the organization level. When applied, a new ruleset will be created. When destroyed, that ruleset will be removed.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as github from "@pulumi/github";
const example = new github.OrganizationRuleset("example", {
name: "example",
target: "branch",
enforcement: "active",
conditions: {
refName: {
includes: ["~ALL"],
excludes: [],
},
},
bypassActors: [{
actorId: 13473,
actorType: "Integration",
bypassMode: "always",
}],
rules: {
creation: true,
update: true,
deletion: true,
requiredLinearHistory: true,
requiredSignatures: true,
branchNamePattern: {
name: "example",
negate: false,
operator: "starts_with",
pattern: "ex",
},
},
});
import pulumi
import pulumi_github as github
example = github.OrganizationRuleset("example",
name="example",
target="branch",
enforcement="active",
conditions={
"ref_name": {
"includes": ["~ALL"],
"excludes": [],
},
},
bypass_actors=[{
"actor_id": 13473,
"actor_type": "Integration",
"bypass_mode": "always",
}],
rules={
"creation": True,
"update": True,
"deletion": True,
"required_linear_history": True,
"required_signatures": True,
"branch_name_pattern": {
"name": "example",
"negate": False,
"operator": "starts_with",
"pattern": "ex",
},
})
package main
import (
"github.com/pulumi/pulumi-github/sdk/v6/go/github"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := github.NewOrganizationRuleset(ctx, "example", &github.OrganizationRulesetArgs{
Name: pulumi.String("example"),
Target: pulumi.String("branch"),
Enforcement: pulumi.String("active"),
Conditions: &github.OrganizationRulesetConditionsArgs{
RefName: &github.OrganizationRulesetConditionsRefNameArgs{
Includes: pulumi.StringArray{
pulumi.String("~ALL"),
},
Excludes: pulumi.StringArray{},
},
},
BypassActors: github.OrganizationRulesetBypassActorArray{
&github.OrganizationRulesetBypassActorArgs{
ActorId: pulumi.Int(13473),
ActorType: pulumi.String("Integration"),
BypassMode: pulumi.String("always"),
},
},
Rules: &github.OrganizationRulesetRulesArgs{
Creation: pulumi.Bool(true),
Update: pulumi.Bool(true),
Deletion: pulumi.Bool(true),
RequiredLinearHistory: pulumi.Bool(true),
RequiredSignatures: pulumi.Bool(true),
BranchNamePattern: &github.OrganizationRulesetRulesBranchNamePatternArgs{
Name: pulumi.String("example"),
Negate: pulumi.Bool(false),
Operator: pulumi.String("starts_with"),
Pattern: pulumi.String("ex"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Github = Pulumi.Github;
return await Deployment.RunAsync(() =>
{
var example = new Github.OrganizationRuleset("example", new()
{
Name = "example",
Target = "branch",
Enforcement = "active",
Conditions = new Github.Inputs.OrganizationRulesetConditionsArgs
{
RefName = new Github.Inputs.OrganizationRulesetConditionsRefNameArgs
{
Includes = new[]
{
"~ALL",
},
Excludes = new() { },
},
},
BypassActors = new[]
{
new Github.Inputs.OrganizationRulesetBypassActorArgs
{
ActorId = 13473,
ActorType = "Integration",
BypassMode = "always",
},
},
Rules = new Github.Inputs.OrganizationRulesetRulesArgs
{
Creation = true,
Update = true,
Deletion = true,
RequiredLinearHistory = true,
RequiredSignatures = true,
BranchNamePattern = new Github.Inputs.OrganizationRulesetRulesBranchNamePatternArgs
{
Name = "example",
Negate = false,
Operator = "starts_with",
Pattern = "ex",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.github.OrganizationRuleset;
import com.pulumi.github.OrganizationRulesetArgs;
import com.pulumi.github.inputs.OrganizationRulesetConditionsArgs;
import com.pulumi.github.inputs.OrganizationRulesetConditionsRefNameArgs;
import com.pulumi.github.inputs.OrganizationRulesetBypassActorArgs;
import com.pulumi.github.inputs.OrganizationRulesetRulesArgs;
import com.pulumi.github.inputs.OrganizationRulesetRulesBranchNamePatternArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new OrganizationRuleset("example", OrganizationRulesetArgs.builder()
.name("example")
.target("branch")
.enforcement("active")
.conditions(OrganizationRulesetConditionsArgs.builder()
.refName(OrganizationRulesetConditionsRefNameArgs.builder()
.includes("~ALL")
.excludes()
.build())
.build())
.bypassActors(OrganizationRulesetBypassActorArgs.builder()
.actorId(13473)
.actorType("Integration")
.bypassMode("always")
.build())
.rules(OrganizationRulesetRulesArgs.builder()
.creation(true)
.update(true)
.deletion(true)
.requiredLinearHistory(true)
.requiredSignatures(true)
.branchNamePattern(OrganizationRulesetRulesBranchNamePatternArgs.builder()
.name("example")
.negate(false)
.operator("starts_with")
.pattern("ex")
.build())
.build())
.build());
}
}
resources:
example:
type: github:OrganizationRuleset
properties:
name: example
target: branch
enforcement: active
conditions:
refName:
includes:
- ~ALL
excludes: []
bypassActors:
- actorId: 13473
actorType: Integration
bypassMode: always
rules:
creation: true
update: true
deletion: true
requiredLinearHistory: true
requiredSignatures: true
branchNamePattern:
name: example
negate: false
operator: starts_with
pattern: ex
Create OrganizationRuleset Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new OrganizationRuleset(name: string, args: OrganizationRulesetArgs, opts?: CustomResourceOptions);
@overload
def OrganizationRuleset(resource_name: str,
args: OrganizationRulesetArgs,
opts: Optional[ResourceOptions] = None)
@overload
def OrganizationRuleset(resource_name: str,
opts: Optional[ResourceOptions] = None,
enforcement: Optional[str] = None,
rules: Optional[OrganizationRulesetRulesArgs] = None,
target: Optional[str] = None,
bypass_actors: Optional[Sequence[OrganizationRulesetBypassActorArgs]] = None,
conditions: Optional[OrganizationRulesetConditionsArgs] = None,
name: Optional[str] = None)
func NewOrganizationRuleset(ctx *Context, name string, args OrganizationRulesetArgs, opts ...ResourceOption) (*OrganizationRuleset, error)
public OrganizationRuleset(string name, OrganizationRulesetArgs args, CustomResourceOptions? opts = null)
public OrganizationRuleset(String name, OrganizationRulesetArgs args)
public OrganizationRuleset(String name, OrganizationRulesetArgs args, CustomResourceOptions options)
type: github:OrganizationRuleset
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args OrganizationRulesetArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args OrganizationRulesetArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args OrganizationRulesetArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args OrganizationRulesetArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args OrganizationRulesetArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var organizationRulesetResource = new Github.OrganizationRuleset("organizationRulesetResource", new()
{
Enforcement = "string",
Rules = new Github.Inputs.OrganizationRulesetRulesArgs
{
BranchNamePattern = new Github.Inputs.OrganizationRulesetRulesBranchNamePatternArgs
{
Operator = "string",
Pattern = "string",
Name = "string",
Negate = false,
},
CommitAuthorEmailPattern = new Github.Inputs.OrganizationRulesetRulesCommitAuthorEmailPatternArgs
{
Operator = "string",
Pattern = "string",
Name = "string",
Negate = false,
},
CommitMessagePattern = new Github.Inputs.OrganizationRulesetRulesCommitMessagePatternArgs
{
Operator = "string",
Pattern = "string",
Name = "string",
Negate = false,
},
CommitterEmailPattern = new Github.Inputs.OrganizationRulesetRulesCommitterEmailPatternArgs
{
Operator = "string",
Pattern = "string",
Name = "string",
Negate = false,
},
Creation = false,
Deletion = false,
NonFastForward = false,
PullRequest = new Github.Inputs.OrganizationRulesetRulesPullRequestArgs
{
DismissStaleReviewsOnPush = false,
RequireCodeOwnerReview = false,
RequireLastPushApproval = false,
RequiredApprovingReviewCount = 0,
RequiredReviewThreadResolution = false,
},
RequiredLinearHistory = false,
RequiredSignatures = false,
RequiredStatusChecks = new Github.Inputs.OrganizationRulesetRulesRequiredStatusChecksArgs
{
RequiredChecks = new[]
{
new Github.Inputs.OrganizationRulesetRulesRequiredStatusChecksRequiredCheckArgs
{
Context = "string",
IntegrationId = 0,
},
},
StrictRequiredStatusChecksPolicy = false,
},
RequiredWorkflows = new Github.Inputs.OrganizationRulesetRulesRequiredWorkflowsArgs
{
RequiredWorkflows = new[]
{
new Github.Inputs.OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflowArgs
{
Path = "string",
RepositoryId = 0,
Ref = "string",
},
},
},
TagNamePattern = new Github.Inputs.OrganizationRulesetRulesTagNamePatternArgs
{
Operator = "string",
Pattern = "string",
Name = "string",
Negate = false,
},
Update = false,
},
Target = "string",
BypassActors = new[]
{
new Github.Inputs.OrganizationRulesetBypassActorArgs
{
ActorId = 0,
ActorType = "string",
BypassMode = "string",
},
},
Conditions = new Github.Inputs.OrganizationRulesetConditionsArgs
{
RefName = new Github.Inputs.OrganizationRulesetConditionsRefNameArgs
{
Excludes = new[]
{
"string",
},
Includes = new[]
{
"string",
},
},
RepositoryIds = new[]
{
0,
},
RepositoryName = new Github.Inputs.OrganizationRulesetConditionsRepositoryNameArgs
{
Excludes = new[]
{
"string",
},
Includes = new[]
{
"string",
},
Protected = false,
},
},
Name = "string",
});
example, err := github.NewOrganizationRuleset(ctx, "organizationRulesetResource", &github.OrganizationRulesetArgs{
Enforcement: pulumi.String("string"),
Rules: &github.OrganizationRulesetRulesArgs{
BranchNamePattern: &github.OrganizationRulesetRulesBranchNamePatternArgs{
Operator: pulumi.String("string"),
Pattern: pulumi.String("string"),
Name: pulumi.String("string"),
Negate: pulumi.Bool(false),
},
CommitAuthorEmailPattern: &github.OrganizationRulesetRulesCommitAuthorEmailPatternArgs{
Operator: pulumi.String("string"),
Pattern: pulumi.String("string"),
Name: pulumi.String("string"),
Negate: pulumi.Bool(false),
},
CommitMessagePattern: &github.OrganizationRulesetRulesCommitMessagePatternArgs{
Operator: pulumi.String("string"),
Pattern: pulumi.String("string"),
Name: pulumi.String("string"),
Negate: pulumi.Bool(false),
},
CommitterEmailPattern: &github.OrganizationRulesetRulesCommitterEmailPatternArgs{
Operator: pulumi.String("string"),
Pattern: pulumi.String("string"),
Name: pulumi.String("string"),
Negate: pulumi.Bool(false),
},
Creation: pulumi.Bool(false),
Deletion: pulumi.Bool(false),
NonFastForward: pulumi.Bool(false),
PullRequest: &github.OrganizationRulesetRulesPullRequestArgs{
DismissStaleReviewsOnPush: pulumi.Bool(false),
RequireCodeOwnerReview: pulumi.Bool(false),
RequireLastPushApproval: pulumi.Bool(false),
RequiredApprovingReviewCount: pulumi.Int(0),
RequiredReviewThreadResolution: pulumi.Bool(false),
},
RequiredLinearHistory: pulumi.Bool(false),
RequiredSignatures: pulumi.Bool(false),
RequiredStatusChecks: &github.OrganizationRulesetRulesRequiredStatusChecksArgs{
RequiredChecks: github.OrganizationRulesetRulesRequiredStatusChecksRequiredCheckArray{
&github.OrganizationRulesetRulesRequiredStatusChecksRequiredCheckArgs{
Context: pulumi.String("string"),
IntegrationId: pulumi.Int(0),
},
},
StrictRequiredStatusChecksPolicy: pulumi.Bool(false),
},
RequiredWorkflows: &github.OrganizationRulesetRulesRequiredWorkflowsArgs{
RequiredWorkflows: github.OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflowArray{
&github.OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflowArgs{
Path: pulumi.String("string"),
RepositoryId: pulumi.Int(0),
Ref: pulumi.String("string"),
},
},
},
TagNamePattern: &github.OrganizationRulesetRulesTagNamePatternArgs{
Operator: pulumi.String("string"),
Pattern: pulumi.String("string"),
Name: pulumi.String("string"),
Negate: pulumi.Bool(false),
},
Update: pulumi.Bool(false),
},
Target: pulumi.String("string"),
BypassActors: github.OrganizationRulesetBypassActorArray{
&github.OrganizationRulesetBypassActorArgs{
ActorId: pulumi.Int(0),
ActorType: pulumi.String("string"),
BypassMode: pulumi.String("string"),
},
},
Conditions: &github.OrganizationRulesetConditionsArgs{
RefName: &github.OrganizationRulesetConditionsRefNameArgs{
Excludes: pulumi.StringArray{
pulumi.String("string"),
},
Includes: pulumi.StringArray{
pulumi.String("string"),
},
},
RepositoryIds: pulumi.IntArray{
pulumi.Int(0),
},
RepositoryName: &github.OrganizationRulesetConditionsRepositoryNameArgs{
Excludes: pulumi.StringArray{
pulumi.String("string"),
},
Includes: pulumi.StringArray{
pulumi.String("string"),
},
Protected: pulumi.Bool(false),
},
},
Name: pulumi.String("string"),
})
var organizationRulesetResource = new OrganizationRuleset("organizationRulesetResource", OrganizationRulesetArgs.builder()
.enforcement("string")
.rules(OrganizationRulesetRulesArgs.builder()
.branchNamePattern(OrganizationRulesetRulesBranchNamePatternArgs.builder()
.operator("string")
.pattern("string")
.name("string")
.negate(false)
.build())
.commitAuthorEmailPattern(OrganizationRulesetRulesCommitAuthorEmailPatternArgs.builder()
.operator("string")
.pattern("string")
.name("string")
.negate(false)
.build())
.commitMessagePattern(OrganizationRulesetRulesCommitMessagePatternArgs.builder()
.operator("string")
.pattern("string")
.name("string")
.negate(false)
.build())
.committerEmailPattern(OrganizationRulesetRulesCommitterEmailPatternArgs.builder()
.operator("string")
.pattern("string")
.name("string")
.negate(false)
.build())
.creation(false)
.deletion(false)
.nonFastForward(false)
.pullRequest(OrganizationRulesetRulesPullRequestArgs.builder()
.dismissStaleReviewsOnPush(false)
.requireCodeOwnerReview(false)
.requireLastPushApproval(false)
.requiredApprovingReviewCount(0)
.requiredReviewThreadResolution(false)
.build())
.requiredLinearHistory(false)
.requiredSignatures(false)
.requiredStatusChecks(OrganizationRulesetRulesRequiredStatusChecksArgs.builder()
.requiredChecks(OrganizationRulesetRulesRequiredStatusChecksRequiredCheckArgs.builder()
.context("string")
.integrationId(0)
.build())
.strictRequiredStatusChecksPolicy(false)
.build())
.requiredWorkflows(OrganizationRulesetRulesRequiredWorkflowsArgs.builder()
.requiredWorkflows(OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflowArgs.builder()
.path("string")
.repositoryId(0)
.ref("string")
.build())
.build())
.tagNamePattern(OrganizationRulesetRulesTagNamePatternArgs.builder()
.operator("string")
.pattern("string")
.name("string")
.negate(false)
.build())
.update(false)
.build())
.target("string")
.bypassActors(OrganizationRulesetBypassActorArgs.builder()
.actorId(0)
.actorType("string")
.bypassMode("string")
.build())
.conditions(OrganizationRulesetConditionsArgs.builder()
.refName(OrganizationRulesetConditionsRefNameArgs.builder()
.excludes("string")
.includes("string")
.build())
.repositoryIds(0)
.repositoryName(OrganizationRulesetConditionsRepositoryNameArgs.builder()
.excludes("string")
.includes("string")
.protected_(false)
.build())
.build())
.name("string")
.build());
organization_ruleset_resource = github.OrganizationRuleset("organizationRulesetResource",
enforcement="string",
rules={
"branch_name_pattern": {
"operator": "string",
"pattern": "string",
"name": "string",
"negate": False,
},
"commit_author_email_pattern": {
"operator": "string",
"pattern": "string",
"name": "string",
"negate": False,
},
"commit_message_pattern": {
"operator": "string",
"pattern": "string",
"name": "string",
"negate": False,
},
"committer_email_pattern": {
"operator": "string",
"pattern": "string",
"name": "string",
"negate": False,
},
"creation": False,
"deletion": False,
"non_fast_forward": False,
"pull_request": {
"dismiss_stale_reviews_on_push": False,
"require_code_owner_review": False,
"require_last_push_approval": False,
"required_approving_review_count": 0,
"required_review_thread_resolution": False,
},
"required_linear_history": False,
"required_signatures": False,
"required_status_checks": {
"required_checks": [{
"context": "string",
"integration_id": 0,
}],
"strict_required_status_checks_policy": False,
},
"required_workflows": {
"required_workflows": [{
"path": "string",
"repository_id": 0,
"ref": "string",
}],
},
"tag_name_pattern": {
"operator": "string",
"pattern": "string",
"name": "string",
"negate": False,
},
"update": False,
},
target="string",
bypass_actors=[{
"actor_id": 0,
"actor_type": "string",
"bypass_mode": "string",
}],
conditions={
"ref_name": {
"excludes": ["string"],
"includes": ["string"],
},
"repository_ids": [0],
"repository_name": {
"excludes": ["string"],
"includes": ["string"],
"protected": False,
},
},
name="string")
const organizationRulesetResource = new github.OrganizationRuleset("organizationRulesetResource", {
enforcement: "string",
rules: {
branchNamePattern: {
operator: "string",
pattern: "string",
name: "string",
negate: false,
},
commitAuthorEmailPattern: {
operator: "string",
pattern: "string",
name: "string",
negate: false,
},
commitMessagePattern: {
operator: "string",
pattern: "string",
name: "string",
negate: false,
},
committerEmailPattern: {
operator: "string",
pattern: "string",
name: "string",
negate: false,
},
creation: false,
deletion: false,
nonFastForward: false,
pullRequest: {
dismissStaleReviewsOnPush: false,
requireCodeOwnerReview: false,
requireLastPushApproval: false,
requiredApprovingReviewCount: 0,
requiredReviewThreadResolution: false,
},
requiredLinearHistory: false,
requiredSignatures: false,
requiredStatusChecks: {
requiredChecks: [{
context: "string",
integrationId: 0,
}],
strictRequiredStatusChecksPolicy: false,
},
requiredWorkflows: {
requiredWorkflows: [{
path: "string",
repositoryId: 0,
ref: "string",
}],
},
tagNamePattern: {
operator: "string",
pattern: "string",
name: "string",
negate: false,
},
update: false,
},
target: "string",
bypassActors: [{
actorId: 0,
actorType: "string",
bypassMode: "string",
}],
conditions: {
refName: {
excludes: ["string"],
includes: ["string"],
},
repositoryIds: [0],
repositoryName: {
excludes: ["string"],
includes: ["string"],
"protected": false,
},
},
name: "string",
});
type: github:OrganizationRuleset
properties:
bypassActors:
- actorId: 0
actorType: string
bypassMode: string
conditions:
refName:
excludes:
- string
includes:
- string
repositoryIds:
- 0
repositoryName:
excludes:
- string
includes:
- string
protected: false
enforcement: string
name: string
rules:
branchNamePattern:
name: string
negate: false
operator: string
pattern: string
commitAuthorEmailPattern:
name: string
negate: false
operator: string
pattern: string
commitMessagePattern:
name: string
negate: false
operator: string
pattern: string
committerEmailPattern:
name: string
negate: false
operator: string
pattern: string
creation: false
deletion: false
nonFastForward: false
pullRequest:
dismissStaleReviewsOnPush: false
requireCodeOwnerReview: false
requireLastPushApproval: false
requiredApprovingReviewCount: 0
requiredReviewThreadResolution: false
requiredLinearHistory: false
requiredSignatures: false
requiredStatusChecks:
requiredChecks:
- context: string
integrationId: 0
strictRequiredStatusChecksPolicy: false
requiredWorkflows:
requiredWorkflows:
- path: string
ref: string
repositoryId: 0
tagNamePattern:
name: string
negate: false
operator: string
pattern: string
update: false
target: string
OrganizationRuleset Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The OrganizationRuleset resource accepts the following input properties:
- Enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - Rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- Target string
- (String) Possible values are
branch
andtag
. - Bypass
Actors List<OrganizationRuleset Bypass Actor> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- Conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - Name string
- (String) The name of the ruleset.
- Enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - Rules
Organization
Ruleset Rules Args - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- Target string
- (String) Possible values are
branch
andtag
. - Bypass
Actors []OrganizationRuleset Bypass Actor Args - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- Conditions
Organization
Ruleset Conditions Args - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - Name string
- (String) The name of the ruleset.
- enforcement String
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- target String
- (String) Possible values are
branch
andtag
. - bypass
Actors List<OrganizationRuleset Bypass Actor> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - name String
- (String) The name of the ruleset.
- enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- target string
- (String) Possible values are
branch
andtag
. - bypass
Actors OrganizationRuleset Bypass Actor[] - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - name string
- (String) The name of the ruleset.
- enforcement str
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - rules
Organization
Ruleset Rules Args - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- target str
- (String) Possible values are
branch
andtag
. - bypass_
actors Sequence[OrganizationRuleset Bypass Actor Args] - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions Args - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - name str
- (String) The name of the ruleset.
- enforcement String
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - rules Property Map
- (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- target String
- (String) Possible values are
branch
andtag
. - bypass
Actors List<Property Map> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions Property Map
- (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - name String
- (String) The name of the ruleset.
Outputs
All input properties are implicitly available as output properties. Additionally, the OrganizationRuleset resource produces the following output properties:
- etag str
- (String)
- id str
- The provider-assigned unique ID for this managed resource.
- node_
id str - (String) GraphQL global node id for use with v4 API.
- ruleset_
id int - (Number) GitHub ID for the ruleset.
Look up Existing OrganizationRuleset Resource
Get an existing OrganizationRuleset resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: OrganizationRulesetState, opts?: CustomResourceOptions): OrganizationRuleset
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
bypass_actors: Optional[Sequence[OrganizationRulesetBypassActorArgs]] = None,
conditions: Optional[OrganizationRulesetConditionsArgs] = None,
enforcement: Optional[str] = None,
etag: Optional[str] = None,
name: Optional[str] = None,
node_id: Optional[str] = None,
rules: Optional[OrganizationRulesetRulesArgs] = None,
ruleset_id: Optional[int] = None,
target: Optional[str] = None) -> OrganizationRuleset
func GetOrganizationRuleset(ctx *Context, name string, id IDInput, state *OrganizationRulesetState, opts ...ResourceOption) (*OrganizationRuleset, error)
public static OrganizationRuleset Get(string name, Input<string> id, OrganizationRulesetState? state, CustomResourceOptions? opts = null)
public static OrganizationRuleset get(String name, Output<String> id, OrganizationRulesetState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Bypass
Actors List<OrganizationRuleset Bypass Actor> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- Conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - Enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - Etag string
- (String)
- Name string
- (String) The name of the ruleset.
- Node
Id string - (String) GraphQL global node id for use with v4 API.
- Rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- Ruleset
Id int - (Number) GitHub ID for the ruleset.
- Target string
- (String) Possible values are
branch
andtag
.
- Bypass
Actors []OrganizationRuleset Bypass Actor Args - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- Conditions
Organization
Ruleset Conditions Args - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - Enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - Etag string
- (String)
- Name string
- (String) The name of the ruleset.
- Node
Id string - (String) GraphQL global node id for use with v4 API.
- Rules
Organization
Ruleset Rules Args - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- Ruleset
Id int - (Number) GitHub ID for the ruleset.
- Target string
- (String) Possible values are
branch
andtag
.
- bypass
Actors List<OrganizationRuleset Bypass Actor> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - enforcement String
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - etag String
- (String)
- name String
- (String) The name of the ruleset.
- node
Id String - (String) GraphQL global node id for use with v4 API.
- rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- ruleset
Id Integer - (Number) GitHub ID for the ruleset.
- target String
- (String) Possible values are
branch
andtag
.
- bypass
Actors OrganizationRuleset Bypass Actor[] - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - enforcement string
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - etag string
- (String)
- name string
- (String) The name of the ruleset.
- node
Id string - (String) GraphQL global node id for use with v4 API.
- rules
Organization
Ruleset Rules - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- ruleset
Id number - (Number) GitHub ID for the ruleset.
- target string
- (String) Possible values are
branch
andtag
.
- bypass_
actors Sequence[OrganizationRuleset Bypass Actor Args] - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions
Organization
Ruleset Conditions Args - (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - enforcement str
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - etag str
- (String)
- name str
- (String) The name of the ruleset.
- node_
id str - (String) GraphQL global node id for use with v4 API.
- rules
Organization
Ruleset Rules Args - (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- ruleset_
id int - (Number) GitHub ID for the ruleset.
- target str
- (String) Possible values are
branch
andtag
.
- bypass
Actors List<Property Map> - (Block List) The actors that can bypass the rules in this ruleset. (see below for nested schema)
- conditions Property Map
- (Block List, Max: 1) Parameters for an organization ruleset condition.
ref_name
is required alongside one ofrepository_name
orrepository_id
. (see below for nested schema) - enforcement String
- (String) Possible values for Enforcement are
disabled
,active
,evaluate
. Note:evaluate
is currently only supported for owners of typeorganization
. - etag String
- (String)
- name String
- (String) The name of the ruleset.
- node
Id String - (String) GraphQL global node id for use with v4 API.
- rules Property Map
- (Block List, Min: 1, Max: 1) Rules within the ruleset. (see below for nested schema)
- ruleset
Id Number - (Number) GitHub ID for the ruleset.
- target String
- (String) Possible values are
branch
andtag
.
Supporting Types
OrganizationRulesetBypassActor, OrganizationRulesetBypassActorArgs
- Actor
Id int - (Number) The ID of the actor that can bypass a ruleset.
- Actor
Type string - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - Bypass
Mode string (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
- Actor
Id int - (Number) The ID of the actor that can bypass a ruleset.
- Actor
Type string - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - Bypass
Mode string (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
- actor
Id Integer - (Number) The ID of the actor that can bypass a ruleset.
- actor
Type String - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - bypass
Mode String (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
- actor
Id number - (Number) The ID of the actor that can bypass a ruleset.
- actor
Type string - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - bypass
Mode string (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
- actor_
id int - (Number) The ID of the actor that can bypass a ruleset.
- actor_
type str - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - bypass_
mode str (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
- actor
Id Number - (Number) The ID of the actor that can bypass a ruleset.
- actor
Type String - The type of actor that can bypass a ruleset. Can be one of:
RepositoryRole
,Team
,Integration
,OrganizationAdmin
. - bypass
Mode String (String) When the specified actor can bypass the ruleset. pull_request means that an actor can only bypass rules on pull requests. Can be one of:
always
,pull_request
.~>Note: at the time of writing this, the following actor types correspond to the following actor IDs:
OrganizationAdmin
>1
RepositoryRole
(This is the actor type, the following are the base repository roles and their associated IDs.)
OrganizationRulesetConditions, OrganizationRulesetConditionsArgs
- Ref
Name OrganizationRuleset Conditions Ref Name - (Block List, Min: 1, Max: 1) (see below for nested schema)
- Repository
Ids List<int> - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - Repository
Name OrganizationRuleset Conditions Repository Name Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
- Ref
Name OrganizationRuleset Conditions Ref Name - (Block List, Min: 1, Max: 1) (see below for nested schema)
- Repository
Ids []int - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - Repository
Name OrganizationRuleset Conditions Repository Name Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
- ref
Name OrganizationRuleset Conditions Ref Name - (Block List, Min: 1, Max: 1) (see below for nested schema)
- repository
Ids List<Integer> - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - repository
Name OrganizationRuleset Conditions Repository Name Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
- ref
Name OrganizationRuleset Conditions Ref Name - (Block List, Min: 1, Max: 1) (see below for nested schema)
- repository
Ids number[] - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - repository
Name OrganizationRuleset Conditions Repository Name Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
- ref_
name OrganizationRuleset Conditions Ref Name - (Block List, Min: 1, Max: 1) (see below for nested schema)
- repository_
ids Sequence[int] - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - repository_
name OrganizationRuleset Conditions Repository Name Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
- ref
Name Property Map - (Block List, Min: 1, Max: 1) (see below for nested schema)
- repository
Ids List<Number> - The repository IDs that the ruleset applies to. One of these IDs must match for the condition to pass. Conflicts with
repository_name
. - repository
Name Property Map Conflicts with
repository_id
. (see below for nested schema)One of
repository_id
andrepository_name
must be set for the rule to target any repositories.
OrganizationRulesetConditionsRefName, OrganizationRulesetConditionsRefNameArgs
- Excludes List<string>
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- Includes List<string>
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
- Excludes []string
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- Includes []string
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
- excludes List<String>
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes List<String>
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
- excludes string[]
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes string[]
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
- excludes Sequence[str]
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes Sequence[str]
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
- excludes List<String>
- Array of ref names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes List<String>
- Array of ref names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~DEFAULT_BRANCH
to include the default branch or~ALL
to include all branches.
OrganizationRulesetConditionsRepositoryName, OrganizationRulesetConditionsRepositoryNameArgs
- Excludes List<string>
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- Includes List<string>
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - Protected bool
- Whether renaming of target repositories is prevented.
- Excludes []string
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- Includes []string
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - Protected bool
- Whether renaming of target repositories is prevented.
- excludes List<String>
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes List<String>
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - protected_ Boolean
- Whether renaming of target repositories is prevented.
- excludes string[]
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes string[]
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - protected boolean
- Whether renaming of target repositories is prevented.
- excludes Sequence[str]
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes Sequence[str]
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - protected bool
- Whether renaming of target repositories is prevented.
- excludes List<String>
- Array of repository names or patterns to exclude. The condition will not pass if any of these patterns match.
- includes List<String>
- Array of repository names or patterns to include. One of these patterns must match for the condition to pass. Also accepts
~ALL
to include all repositories. - protected Boolean
- Whether renaming of target repositories is prevented.
OrganizationRulesetRules, OrganizationRulesetRulesArgs
- Branch
Name OrganizationPattern Ruleset Rules Branch Name Pattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Organization
Ruleset Rules Commit Author Email Pattern - (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Commit
Message OrganizationPattern Ruleset Rules Commit Message Pattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Committer
Email OrganizationPattern Ruleset Rules Committer Email Pattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Creation bool
- (Boolean) Only allow users with bypass permission to create matching refs.
- Deletion bool
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- Non
Fast boolForward - (Boolean) Prevent users with push access from force pushing to branches.
- Pull
Request OrganizationRuleset Rules Pull Request - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- Required
Linear boolHistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- Required
Signatures bool - (Boolean) Commits pushed to matching branches must have verified signatures.
- Required
Status OrganizationChecks Ruleset Rules Required Status Checks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- Required
Workflows OrganizationRuleset Rules Required Workflows - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- Tag
Name OrganizationPattern Ruleset Rules Tag Name Pattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - Update bool
- (Boolean) Only allow users with bypass permission to update matching refs.
- Branch
Name OrganizationPattern Ruleset Rules Branch Name Pattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Organization
Ruleset Rules Commit Author Email Pattern - (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Commit
Message OrganizationPattern Ruleset Rules Commit Message Pattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Committer
Email OrganizationPattern Ruleset Rules Committer Email Pattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- Creation bool
- (Boolean) Only allow users with bypass permission to create matching refs.
- Deletion bool
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- Non
Fast boolForward - (Boolean) Prevent users with push access from force pushing to branches.
- Pull
Request OrganizationRuleset Rules Pull Request - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- Required
Linear boolHistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- Required
Signatures bool - (Boolean) Commits pushed to matching branches must have verified signatures.
- Required
Status OrganizationChecks Ruleset Rules Required Status Checks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- Required
Workflows OrganizationRuleset Rules Required Workflows - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- Tag
Name OrganizationPattern Ruleset Rules Tag Name Pattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - Update bool
- (Boolean) Only allow users with bypass permission to update matching refs.
- branch
Name OrganizationPattern Ruleset Rules Branch Name Pattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Organization
Ruleset Rules Commit Author Email Pattern - (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- commit
Message OrganizationPattern Ruleset Rules Commit Message Pattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- committer
Email OrganizationPattern Ruleset Rules Committer Email Pattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- creation Boolean
- (Boolean) Only allow users with bypass permission to create matching refs.
- deletion Boolean
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- non
Fast BooleanForward - (Boolean) Prevent users with push access from force pushing to branches.
- pull
Request OrganizationRuleset Rules Pull Request - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- required
Linear BooleanHistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- required
Signatures Boolean - (Boolean) Commits pushed to matching branches must have verified signatures.
- required
Status OrganizationChecks Ruleset Rules Required Status Checks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- required
Workflows OrganizationRuleset Rules Required Workflows - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- tag
Name OrganizationPattern Ruleset Rules Tag Name Pattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - update Boolean
- (Boolean) Only allow users with bypass permission to update matching refs.
- branch
Name OrganizationPattern Ruleset Rules Branch Name Pattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Organization
Ruleset Rules Commit Author Email Pattern - (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- commit
Message OrganizationPattern Ruleset Rules Commit Message Pattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- committer
Email OrganizationPattern Ruleset Rules Committer Email Pattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- creation boolean
- (Boolean) Only allow users with bypass permission to create matching refs.
- deletion boolean
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- non
Fast booleanForward - (Boolean) Prevent users with push access from force pushing to branches.
- pull
Request OrganizationRuleset Rules Pull Request - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- required
Linear booleanHistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- required
Signatures boolean - (Boolean) Commits pushed to matching branches must have verified signatures.
- required
Status OrganizationChecks Ruleset Rules Required Status Checks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- required
Workflows OrganizationRuleset Rules Required Workflows - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- tag
Name OrganizationPattern Ruleset Rules Tag Name Pattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - update boolean
- (Boolean) Only allow users with bypass permission to update matching refs.
- branch_
name_ Organizationpattern Ruleset Rules Branch Name Pattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Organization
Ruleset Rules Commit Author Email Pattern - (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- commit_
message_ Organizationpattern Ruleset Rules Commit Message Pattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- committer_
email_ Organizationpattern Ruleset Rules Committer Email Pattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- creation bool
- (Boolean) Only allow users with bypass permission to create matching refs.
- deletion bool
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- non_
fast_ boolforward - (Boolean) Prevent users with push access from force pushing to branches.
- pull_
request OrganizationRuleset Rules Pull Request - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- required_
linear_ boolhistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- required_
signatures bool - (Boolean) Commits pushed to matching branches must have verified signatures.
- required_
status_ Organizationchecks Ruleset Rules Required Status Checks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- required_
workflows OrganizationRuleset Rules Required Workflows - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- tag_
name_ Organizationpattern Ruleset Rules Tag Name Pattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - update bool
- (Boolean) Only allow users with bypass permission to update matching refs.
- branch
Name Property MapPattern - (Block List, Max: 1) Parameters to be used for the branch_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
tag_name_pattern
as it only applies to rulesets with targetbranch
. (see below for nested schema) - Property Map
- (Block List, Max: 1) Parameters to be used for the commit_author_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- commit
Message Property MapPattern - (Block List, Max: 1) Parameters to be used for the commit_message_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- committer
Email Property MapPattern - (Block List, Max: 1) Parameters to be used for the committer_email_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. (see below for nested schema)
- creation Boolean
- (Boolean) Only allow users with bypass permission to create matching refs.
- deletion Boolean
- (Boolean) Only allow users with bypass permissions to delete matching refs.
- non
Fast BooleanForward - (Boolean) Prevent users with push access from force pushing to branches.
- pull
Request Property Map - (Block List, Max: 1) Require all commits be made to a non-target branch and submitted via a pull request before they can be merged. (see below for nested schema)
- required
Linear BooleanHistory - (Boolean) Prevent merge commits from being pushed to matching branches.
- required
Signatures Boolean - (Boolean) Commits pushed to matching branches must have verified signatures.
- required
Status Property MapChecks - (Block List, Max: 1) Choose which status checks must pass before branches can be merged into a branch that matches this rule. When enabled, commits must first be pushed to another branch, then merged or pushed directly to a branch that matches this rule after status checks have passed. (see below for nested schema)
- required
Workflows Property Map - (Block List, Max: 1) Define which Actions workflows must pass before changes can be merged into a branch matching the rule. Multiple workflows can be specified. (see below for nested schema)
- tag
Name Property MapPattern - (Block List, Max: 1) Parameters to be used for the tag_name_pattern rule. This rule only applies to repositories within an enterprise, it cannot be applied to repositories owned by individuals or regular organizations. Conflicts with
branch_name_pattern
as it only applies to rulesets with targettag
. (see below for nested schema) - update Boolean
- (Boolean) Only allow users with bypass permission to update matching refs.
OrganizationRulesetRulesBranchNamePattern, OrganizationRulesetRulesBranchNamePatternArgs
OrganizationRulesetRulesCommitAuthorEmailPattern, OrganizationRulesetRulesCommitAuthorEmailPatternArgs
OrganizationRulesetRulesCommitMessagePattern, OrganizationRulesetRulesCommitMessagePatternArgs
OrganizationRulesetRulesCommitterEmailPattern, OrganizationRulesetRulesCommitterEmailPatternArgs
OrganizationRulesetRulesPullRequest, OrganizationRulesetRulesPullRequestArgs
- Dismiss
Stale boolReviews On Push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - Require
Code boolOwner Review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - Require
Last boolPush Approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - Required
Approving intReview Count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - Required
Review boolThread Resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
- Dismiss
Stale boolReviews On Push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - Require
Code boolOwner Review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - Require
Last boolPush Approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - Required
Approving intReview Count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - Required
Review boolThread Resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
- dismiss
Stale BooleanReviews On Push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - require
Code BooleanOwner Review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - require
Last BooleanPush Approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - required
Approving IntegerReview Count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - required
Review BooleanThread Resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
- dismiss
Stale booleanReviews On Push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - require
Code booleanOwner Review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - require
Last booleanPush Approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - required
Approving numberReview Count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - required
Review booleanThread Resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
- dismiss_
stale_ boolreviews_ on_ push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - require_
code_ boolowner_ review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - require_
last_ boolpush_ approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - required_
approving_ intreview_ count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - required_
review_ boolthread_ resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
- dismiss
Stale BooleanReviews On Push - New, reviewable commits pushed will dismiss previous pull request review approvals. Defaults to
false
. - require
Code BooleanOwner Review - Require an approving review in pull requests that modify files that have a designated code owner. Defaults to
false
. - require
Last BooleanPush Approval - Whether the most recent reviewable push must be approved by someone other than the person who pushed it. Defaults to
false
. - required
Approving NumberReview Count - The number of approving reviews that are required before a pull request can be merged. Defaults to
0
. - required
Review BooleanThread Resolution - All conversations on code must be resolved before a pull request can be merged. Defaults to
false
.
OrganizationRulesetRulesRequiredStatusChecks, OrganizationRulesetRulesRequiredStatusChecksArgs
- Required
Checks List<OrganizationRuleset Rules Required Status Checks Required Check> - Status checks that are required. Several can be defined.
- Strict
Required boolStatus Checks Policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
- Required
Checks []OrganizationRuleset Rules Required Status Checks Required Check - Status checks that are required. Several can be defined.
- Strict
Required boolStatus Checks Policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
- required
Checks List<OrganizationRuleset Rules Required Status Checks Required Check> - Status checks that are required. Several can be defined.
- strict
Required BooleanStatus Checks Policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
- required
Checks OrganizationRuleset Rules Required Status Checks Required Check[] - Status checks that are required. Several can be defined.
- strict
Required booleanStatus Checks Policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
- required_
checks Sequence[OrganizationRuleset Rules Required Status Checks Required Check] - Status checks that are required. Several can be defined.
- strict_
required_ boolstatus_ checks_ policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
- required
Checks List<Property Map> - Status checks that are required. Several can be defined.
- strict
Required BooleanStatus Checks Policy - Whether pull requests targeting a matching branch must be tested with the latest code. This setting will not take effect unless at least one status check is enabled. Defaults to
false
.
OrganizationRulesetRulesRequiredStatusChecksRequiredCheck, OrganizationRulesetRulesRequiredStatusChecksRequiredCheckArgs
- Context string
- The status check context name that must be present on the commit.
- Integration
Id int - The optional integration ID that this status check must originate from.
- Context string
- The status check context name that must be present on the commit.
- Integration
Id int - The optional integration ID that this status check must originate from.
- context String
- The status check context name that must be present on the commit.
- integration
Id Integer - The optional integration ID that this status check must originate from.
- context string
- The status check context name that must be present on the commit.
- integration
Id number - The optional integration ID that this status check must originate from.
- context str
- The status check context name that must be present on the commit.
- integration_
id int - The optional integration ID that this status check must originate from.
- context String
- The status check context name that must be present on the commit.
- integration
Id Number - The optional integration ID that this status check must originate from.
OrganizationRulesetRulesRequiredWorkflows, OrganizationRulesetRulesRequiredWorkflowsArgs
- Required
Workflows List<OrganizationRuleset Rules Required Workflows Required Workflow> - Actions workflows that are required. Several can be defined.
- Required
Workflows []OrganizationRuleset Rules Required Workflows Required Workflow - Actions workflows that are required. Several can be defined.
- required
Workflows List<OrganizationRuleset Rules Required Workflows Required Workflow> - Actions workflows that are required. Several can be defined.
- required
Workflows OrganizationRuleset Rules Required Workflows Required Workflow[] - Actions workflows that are required. Several can be defined.
- required_
workflows Sequence[OrganizationRuleset Rules Required Workflows Required Workflow] - Actions workflows that are required. Several can be defined.
- required
Workflows List<Property Map> - Actions workflows that are required. Several can be defined.
OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflow, OrganizationRulesetRulesRequiredWorkflowsRequiredWorkflowArgs
- Path string
- The path to the workflow YAML definition file.
- Repository
Id int - The repository in which the workflow is defined.
- Ref string
- The ref (branch or tag) of the workflow file to use.
- Path string
- The path to the workflow YAML definition file.
- Repository
Id int - The repository in which the workflow is defined.
- Ref string
- The ref (branch or tag) of the workflow file to use.
- path String
- The path to the workflow YAML definition file.
- repository
Id Integer - The repository in which the workflow is defined.
- ref String
- The ref (branch or tag) of the workflow file to use.
- path string
- The path to the workflow YAML definition file.
- repository
Id number - The repository in which the workflow is defined.
- ref string
- The ref (branch or tag) of the workflow file to use.
- path str
- The path to the workflow YAML definition file.
- repository_
id int - The repository in which the workflow is defined.
- ref str
- The ref (branch or tag) of the workflow file to use.
- path String
- The path to the workflow YAML definition file.
- repository
Id Number - The repository in which the workflow is defined.
- ref String
- The ref (branch or tag) of the workflow file to use.
OrganizationRulesetRulesTagNamePattern, OrganizationRulesetRulesTagNamePatternArgs
Import
GitHub Organization Rulesets can be imported using the GitHub ruleset ID e.g.
$ pulumi import github:index/organizationRuleset:OrganizationRuleset example 12345`
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- GitHub pulumi/pulumi-github
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
github
Terraform Provider.