Skip to content

[MAINT] Fix github_organization_ruleset and github_repository_ruleset with push target #2958

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
deiga wants to merge 52 commits into
base: main
Choose a base branch
from
Open

[MAINT] Fix github_organization_ruleset and github_repository_ruleset with push target #2958

deiga wants to merge 52 commits into from

Conversation

@deiga
Copy link
Contributor

@deiga deiga commented Dec 2, 2025
edited
Loading

Resolves #2929, #2467

Before the change?

  • The provider would crash from a 422 error response when following the example in the docs
  • Removing ref_name would cause the provider to Panic as ref_name is a required field
  • One could add rules which weren't valid for push rulesets

After the change?

  • The provider should correctly apply push rulesets to an organization
  • ref_name should no longer be needed to be set for push target
  • conditions & target validation logic should ensure correct fields are populated

Pull request checklist

  • Schema migrations have been created if needed (example)
  • Tests for the changes have been added (for bug fixes / features)
  • Docs have been reviewed and added / updated if needed (for bug fixes / features)

Does this introduce a breaking change?

Please see our docs on breaking changes to help!

  • Yes
  • No

nickfloyd
nickfloyd reviewed Dec 2, 2025
View reviewed changes
stevehipwell
stevehipwell reviewed Dec 3, 2025
View reviewed changes
Copy link
Collaborator

@stevehipwell stevehipwell left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this change likely wants to wait for the SDK upgrade as a lot of this area is modified in future versions.

FYI the error behaviours previously seen should have been mitigated by #2705 so if there is an error the provider should handle it gracefully.

@deiga deiga force-pushed the org-ruleset-fix-push branch from 0531db8 to 9dd2965 Compare December 3, 2025 20:15
@deiga deiga changed the base branch from main to go-github-v68 December 3, 2025 20:15
@deiga deiga mentioned this pull request Dec 5, 2025
Closed
1 task
stevehipwell
stevehipwell reviewed Dec 5, 2025
View reviewed changes
@deiga deiga force-pushed the org-ruleset-fix-push branch from 1bdfa45 to efd67ae Compare December 7, 2025 00:20
@deiga deiga changed the title Fix github_organization_ruleset with push target [MAINT] Fix github_organization_ruleset with push target Dec 7, 2025
@deiga deiga force-pushed the org-ruleset-fix-push branch from 52d95d4 to 6782aab Compare December 8, 2025 13:42
stevehipwell
stevehipwell requested changes Dec 10, 2025
View reviewed changes
Copy link
Collaborator

@stevehipwell stevehipwell left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it be possible to either de-scope this PR or open a new PR with the smallest number of changes possible to fix the outstanding bugs?

github/resource_github_organization_ruleset.go
},
"bypass_actors": {
Type: schema.TypeList,
Type: schema.TypeList, // TODO: These are returned from GH API sorted by actor_id, we might want to investigate if we want to include sorting
Copy link
Collaborator

@stevehipwell stevehipwell Dec 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should sort the returned values based on the inputs which would stop churn.

Copy link
Contributor Author

@deiga deiga Dec 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That sounds sensible, need to investigate where the best place for the sorting is

Copy link
Contributor Author

@deiga deiga Dec 18, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@stevehipwell after some investigation, it seems that schema.TypeSet would be the correct way to implement unsorted. What do you think?

@deiga
Copy link
Contributor Author

deiga commented Dec 10, 2025

@stevehipwell Yes, I agree. I've done that already in this PR: #2976

But I can't switch the base of this PR to point to that :)

@deiga deiga changed the title [MAINT] Fix github_organization_ruleset with push target [MAINT] Fix github_organization_ruleset and github_repository_ruleset with push target Dec 17, 2025
@deiga deiga marked this pull request as ready for review December 19, 2025 06:35
@deiga deiga marked this pull request as draft January 6, 2026 08:06
@deiga deiga changed the base branch from go-github-v68 to main January 7, 2026 22:14
@deiga deiga force-pushed the org-ruleset-fix-push branch 2 times, most recently from 1fe74fc to 2a2277a Compare January 10, 2026 08:53
@deiga deiga marked this pull request as ready for review January 10, 2026 08:56
@deiga deiga mentioned this pull request Jan 11, 2026
Draft
5 tasks
stevehipwell
stevehipwell requested changes Jan 13, 2026
View reviewed changes
Copy link
Collaborator

@stevehipwell stevehipwell left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've added some review comments, mainly about the code structure.

deiga added 8 commits January 14, 2026 22:13
@deiga
Update descriptions and validations
cbe3621 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Add CustomizeDiff logic to validate on plan
5ebc3d3 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Remove unused leftover
ae114d7 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Add first validation test
7be8666 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Add validation error when conditions is missing
edd0c8b 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Add further validation tests
7a53ffd 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Remove unnecessary skip blocks as individual and anonymous access…
9c2ade7 
… to org rulesets will never be a thing

Signed-off-by: Timo Sand <[email protected]>
@deiga
Switch ref_name to Optional as push doesn't need a ref_name
f6e453b 
Signed-off-by: Timo Sand <[email protected]>
deiga added 26 commits January 14, 2026 22:13
@deiga
Add failing test for flattenConditions with no ref_name condition
1233fb8 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix flattenConditions to work with push rulesets
77a4c16 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Add more tests for flattenConditions
094409b 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Enable debug logging in flattenConditions
c76b1dc 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Ensures that flattenConditions returns an empty list on empty API r…
6eb9ea1 
…esponse

Signed-off-by: Timo Sand <[email protected]>
@deiga
Add validation for push rules
036dd6c 
As they differ from `branch` and `tag` rules

Signed-off-by: Timo Sand <[email protected]>
@deiga
github_repository: Remove comment which doesn't hold true anymore
e4134bb 
Signed-off-by: Timo Sand <[email protected]>
@deiga
github_repository: Ensures that we don't try to PATCH an archived repo
e1ff452 
Signed-off-by: Timo Sand <[email protected]>
@deiga
github_repository_ruleset: Change `TestGithubRepositoryRulesetArchi…
7d2e899 
…ved` repos to be private

This allows even EMU users to run these tests

Signed-off-by: Timo Sand <[email protected]>
@deiga
Get TestAccGithubRepositoryRulesets to work
f747bf5 
Signed-off-by: Timo Sand <[email protected]>
@deiga
repository_ruleset: Add tests for validations
804c347 
Signed-off-by: Timo Sand <[email protected]>
@deiga
repository_ruleset: Implement validations for target, `conditions…
525e787 
…` and `rules`

Signed-off-by: Timo Sand <[email protected]>
@deiga
Updated ruleset docs
7a30bdb 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Extract validation functions to separate utils file with unit tests
1fd5acb 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix ExpectError message
6d99fb5 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix push ruleset test config
b322f02 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Remove repository target after thorough testing that it doesn't do …
d7f8863 
…anything

Signed-off-by: Timo Sand <[email protected]>
@deiga
Use idiomatic test naming convention
a51779b 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Address code structure comment in tests
c924617 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Address import shadowing
88154f3 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Replace unnecessary fmt.Errorf with errors.New
105fb64 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix inconsistent logging
27018d2 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix returning wrong err
a9b535d 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Refactor to use typed constant string for ruleset Target
1fc283d 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Fix indentation issue with github_repository_file and heredocs
f217677 
Signed-off-by: Timo Sand <[email protected]>
@deiga
Refactor github_repository_file to use Context-aware functions for …
d51fea0 
…easier debugging

Signed-off-by: Timo Sand <[email protected]>
@deiga deiga force-pushed the org-ruleset-fix-push branch from c1019c3 to d51fea0 Compare January 14, 2026 20:14
@deiga deiga requested a review from stevehipwell January 14, 2026 23:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nickfloyd nickfloyd Awaiting requested review from nickfloyd

@stevehipwell stevehipwell Awaiting requested review from stevehipwell

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[BUG]: github_organization_ruleset doesn't work with push rulesets

3 participants

@deiga @nickfloyd @stevehipwell