Actions
This resource allows you to create and manage GitHub Actions permissions within your GitHub enterprise organizations. You must have admin access to an organization to use this resource.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as github from "@pulumi/github";
const example = new github.Repository("example", {name: "my-repository"});
const test = new github.ActionsOrganizationPermissions("test", {
allowedActions: "selected",
enabledRepositories: "selected",
allowedActionsConfig: {
githubOwnedAllowed: true,
patternsAlloweds: [
"actions/cache@*",
"actions/checkout@*",
],
verifiedAllowed: true,
},
enabledRepositoriesConfig: {
repositoryIds: [example.repoId],
},
});Content copied to clipboard
import pulumi
import pulumi_github as github
example = github.Repository("example", name="my-repository")
test = github.ActionsOrganizationPermissions("test",
allowed_actions="selected",
enabled_repositories="selected",
allowed_actions_config={
"github_owned_allowed": True,
"patterns_alloweds": [
"actions/cache@*",
"actions/checkout@*",
],
"verified_allowed": True,
},
enabled_repositories_config={
"repository_ids": [example.repo_id],
})Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Github = Pulumi.Github;
return await Deployment.RunAsync(() =>
{
var example = new Github.Repository("example", new()
{
Name = "my-repository",
});
var test = new Github.ActionsOrganizationPermissions("test", new()
{
AllowedActions = "selected",
EnabledRepositories = "selected",
AllowedActionsConfig = new Github.Inputs.ActionsOrganizationPermissionsAllowedActionsConfigArgs
{
GithubOwnedAllowed = true,
PatternsAlloweds = new[]
{
"actions/cache@*",
"actions/checkout@*",
},
VerifiedAllowed = true,
},
EnabledRepositoriesConfig = new Github.Inputs.ActionsOrganizationPermissionsEnabledRepositoriesConfigArgs
{
RepositoryIds = new[]
{
example.RepoId,
},
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-github/sdk/v6/go/github"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := github.NewRepository(ctx, "example", &github.RepositoryArgs{
Name: pulumi.String("my-repository"),
})
if err != nil {
return err
}
_, err = github.NewActionsOrganizationPermissions(ctx, "test", &github.ActionsOrganizationPermissionsArgs{
AllowedActions: pulumi.String("selected"),
EnabledRepositories: pulumi.String("selected"),
AllowedActionsConfig: &github.ActionsOrganizationPermissionsAllowedActionsConfigArgs{
GithubOwnedAllowed: pulumi.Bool(true),
PatternsAlloweds: pulumi.StringArray{
pulumi.String("actions/cache@*"),
pulumi.String("actions/checkout@*"),
},
VerifiedAllowed: pulumi.Bool(true),
},
EnabledRepositoriesConfig: &github.ActionsOrganizationPermissionsEnabledRepositoriesConfigArgs{
RepositoryIds: pulumi.IntArray{
example.RepoId,
},
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.github.Repository;
import com.pulumi.github.RepositoryArgs;
import com.pulumi.github.ActionsOrganizationPermissions;
import com.pulumi.github.ActionsOrganizationPermissionsArgs;
import com.pulumi.github.inputs.ActionsOrganizationPermissionsAllowedActionsConfigArgs;
import com.pulumi.github.inputs.ActionsOrganizationPermissionsEnabledRepositoriesConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new Repository("example", RepositoryArgs.builder()
.name("my-repository")
.build());
var test = new ActionsOrganizationPermissions("test", ActionsOrganizationPermissionsArgs.builder()
.allowedActions("selected")
.enabledRepositories("selected")
.allowedActionsConfig(ActionsOrganizationPermissionsAllowedActionsConfigArgs.builder()
.githubOwnedAllowed(true)
.patternsAlloweds(
"actions/cache@*",
"actions/checkout@*")
.verifiedAllowed(true)
.build())
.enabledRepositoriesConfig(ActionsOrganizationPermissionsEnabledRepositoriesConfigArgs.builder()
.repositoryIds(example.repoId())
.build())
.build());
}
}Content copied to clipboard
resources:
example:
type: github:Repository
properties:
name: my-repository
test:
type: github:ActionsOrganizationPermissions
properties:
allowedActions: selected
enabledRepositories: selected
allowedActionsConfig:
githubOwnedAllowed: true
patternsAlloweds:
- actions/cache@*
- actions/checkout@*
verifiedAllowed: true
enabledRepositoriesConfig:
repositoryIds:
- ${example.repoId}Content copied to clipboard
Import
This resource can be imported using the name of the GitHub organization:
$ pulumi import github:index/actionsOrganizationPermissions:ActionsOrganizationPermissions test github_organization_nameContent copied to clipboard
Properties
Link copied to clipboard
The permissions policy that controls the actions that are allowed to run. Can be one of: all, local_only, or selected.
Link copied to clipboard
Sets the actions that are allowed in an organization. Only available when allowed_actions = selected. See Allowed Actions Config below for details.
Link copied to clipboard
The policy that controls the repositories in the organization that are allowed to run GitHub Actions. Can be one of: all, none, or selected.
Link copied to clipboard
Sets the list of selected repositories that are enabled for GitHub Actions in an organization. Only available when enabled_repositories = selected. See Enabled Repositories Config below for details.
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard