Enterprise
data class EnterpriseActionsPermissionsArgs(val allowedActions: Output<String>? = null, val allowedActionsConfig: Output<EnterpriseActionsPermissionsAllowedActionsConfigArgs>? = null, val enabledOrganizations: Output<String>? = null, val enabledOrganizationsConfig: Output<EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs>? = null, val enterpriseId: Output<String>? = null) : ConvertibleToJava<EnterpriseActionsPermissionsArgs>
This resource allows you to create and manage GitHub Actions permissions within your GitHub enterprise. You must have admin access to an enterprise to use this resource.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as github from "@pulumi/github";
const example-enterprise = github.getEnterprise({
slug: "my-enterprise",
});
const example-org = github.getOrganization({
name: "my-org",
});
const test = new github.EnterpriseActionsPermissions("test", {
enterpriseId: example_enterprise.then(example_enterprise => example_enterprise.slug),
allowedActions: "selected",
enabledOrganizations: "selected",
allowedActionsConfig: {
githubOwnedAllowed: true,
patternsAlloweds: [
"actions/cache@*",
"actions/checkout@*",
],
verifiedAllowed: true,
},
enabledOrganizationsConfig: {
organizationIds: [example_org.then(example_org => example_org.id)],
},
});Content copied to clipboard
import pulumi
import pulumi_github as github
example_enterprise = github.get_enterprise(slug="my-enterprise")
example_org = github.get_organization(name="my-org")
test = github.EnterpriseActionsPermissions("test",
enterprise_id=example_enterprise.slug,
allowed_actions="selected",
enabled_organizations="selected",
allowed_actions_config=github.EnterpriseActionsPermissionsAllowedActionsConfigArgs(
github_owned_allowed=True,
patterns_alloweds=[
"actions/cache@*",
"actions/checkout@*",
],
verified_allowed=True,
),
enabled_organizations_config=github.EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs(
organization_ids=[example_org.id],
))Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Github = Pulumi.Github;
return await Deployment.RunAsync(() =>
{
var example_enterprise = Github.GetEnterprise.Invoke(new()
{
Slug = "my-enterprise",
});
var example_org = Github.GetOrganization.Invoke(new()
{
Name = "my-org",
});
var test = new Github.EnterpriseActionsPermissions("test", new()
{
EnterpriseId = example_enterprise.Apply(example_enterprise => example_enterprise.Apply(getEnterpriseResult => getEnterpriseResult.Slug)),
AllowedActions = "selected",
EnabledOrganizations = "selected",
AllowedActionsConfig = new Github.Inputs.EnterpriseActionsPermissionsAllowedActionsConfigArgs
{
GithubOwnedAllowed = true,
PatternsAlloweds = new[]
{
"actions/cache@*",
"actions/checkout@*",
},
VerifiedAllowed = true,
},
EnabledOrganizationsConfig = new Github.Inputs.EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs
{
OrganizationIds = new[]
{
example_org.Apply(example_org => example_org.Apply(getOrganizationResult => getOrganizationResult.Id)),
},
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-github/sdk/v6/go/github"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example_enterprise, err := github.GetEnterprise(ctx, &github.GetEnterpriseArgs{
Slug: "my-enterprise",
}, nil)
if err != nil {
return err
}
example_org, err := github.GetOrganization(ctx, &github.GetOrganizationArgs{
Name: "my-org",
}, nil)
if err != nil {
return err
}
_, err = github.NewEnterpriseActionsPermissions(ctx, "test", &github.EnterpriseActionsPermissionsArgs{
EnterpriseId: pulumi.String(example_enterprise.Slug),
AllowedActions: pulumi.String("selected"),
EnabledOrganizations: pulumi.String("selected"),
AllowedActionsConfig: &github.EnterpriseActionsPermissionsAllowedActionsConfigArgs{
GithubOwnedAllowed: pulumi.Bool(true),
PatternsAlloweds: pulumi.StringArray{
pulumi.String("actions/cache@*"),
pulumi.String("actions/checkout@*"),
},
VerifiedAllowed: pulumi.Bool(true),
},
EnabledOrganizationsConfig: &github.EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs{
OrganizationIds: pulumi.IntArray{
pulumi.String(example_org.Id),
},
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.github.GithubFunctions;
import com.pulumi.github.inputs.GetEnterpriseArgs;
import com.pulumi.github.inputs.GetOrganizationArgs;
import com.pulumi.github.EnterpriseActionsPermissions;
import com.pulumi.github.EnterpriseActionsPermissionsArgs;
import com.pulumi.github.inputs.EnterpriseActionsPermissionsAllowedActionsConfigArgs;
import com.pulumi.github.inputs.EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example-enterprise = GithubFunctions.getEnterprise(GetEnterpriseArgs.builder()
.slug("my-enterprise")
.build());
final var example-org = GithubFunctions.getOrganization(GetOrganizationArgs.builder()
.name("my-org")
.build());
var test = new EnterpriseActionsPermissions("test", EnterpriseActionsPermissionsArgs.builder()
.enterpriseId(example_enterprise.slug())
.allowedActions("selected")
.enabledOrganizations("selected")
.allowedActionsConfig(EnterpriseActionsPermissionsAllowedActionsConfigArgs.builder()
.githubOwnedAllowed(true)
.patternsAlloweds(
"actions/cache@*",
"actions/checkout@*")
.verifiedAllowed(true)
.build())
.enabledOrganizationsConfig(EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs.builder()
.organizationIds(example_org.id())
.build())
.build());
}
}Content copied to clipboard
resources:
test:
type: github:EnterpriseActionsPermissions
properties:
enterpriseId: ${["example-enterprise"].slug}
allowedActions: selected
enabledOrganizations: selected
allowedActionsConfig:
githubOwnedAllowed: true
patternsAlloweds:
- actions/cache@*
- actions/checkout@*
verifiedAllowed: true
enabledOrganizationsConfig:
organizationIds:
- ${["example-org"].id}
variables:
example-enterprise:
fn::invoke:
Function: github:getEnterprise
Arguments:
slug: my-enterprise
example-org:
fn::invoke:
Function: github:getOrganization
Arguments:
name: my-orgContent copied to clipboard
Import
This resource can be imported using the name of the GitHub enterprise:
$ pulumi import github:index/enterpriseActionsPermissions:EnterpriseActionsPermissions test github_enterprise_nameContent copied to clipboard
Constructors
Link copied to clipboard
constructor(allowedActions: Output<String>? = null, allowedActionsConfig: Output<EnterpriseActionsPermissionsAllowedActionsConfigArgs>? = null, enabledOrganizations: Output<String>? = null, enabledOrganizationsConfig: Output<EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs>? = null, enterpriseId: Output<String>? = null)
Properties
Link copied to clipboard
The permissions policy that controls the actions that are allowed to run. Can be one of: all, local_only, or selected.
Link copied to clipboard
Sets the actions that are allowed in an enterprise. Only available when allowed_actions = selected. See Allowed Actions Config below for details.
Link copied to clipboard
The policy that controls the organizations in the enterprise that are allowed to run GitHub Actions. Can be one of: all, none, or selected.
Link copied to clipboard
val enabledOrganizationsConfig: Output<EnterpriseActionsPermissionsEnabledOrganizationsConfigArgs>? = null
Sets the list of selected organizations that are enabled for GitHub Actions in an enterprise. Only available when enabled_organizations = selected. See Enabled Organizations Config below for details.
Link copied to clipboard
The ID of the enterprise.