Merge pull request #44 from FociSolutions/43-bug-non-enterprise-bootstrap-fail

fix: don't use rulesets for non-enterprise accounts

Author: bzarboni1

modules/github-foundations/README.md

@@ -46,6 +46,7 @@
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
+| <a name="input_account_type"></a> [account\_type](#input\_account\_type) | The type of GitHub account being used. Should be one of either `Personal`, `Organization`, or `Enterprise`. | `string` | n/a | yes |
 | <a name="input_bootstrap_repository_name"></a> [bootstrap\_repository\_name](#input\_bootstrap\_repository\_name) | The name of the bootstrap repository. | `string` | `"bootstrap"` | no |
 | <a name="input_foundation_devs_team_name"></a> [foundation\_devs\_team\_name](#input\_foundation\_devs\_team\_name) | The name of the foundation developers team. | `string` | `"foundation-devs"` | no |
 | <a name="input_oidc_configuration"></a> [oidc\_configuration](#input\_oidc\_configuration) | n/a | <pre>object({<br>    gcp = optional(object({<br>      workload_identity_provider_name_secret_name = optional(string)<br>      workload_identity_provider_name             = string<br><br>      organization_workload_identity_sa_secret_name = optional(string)<br>      organization_workload_identity_sa             = string<br><br>      gcp_secret_manager_project_id_variable_name = optional(string)<br>      gcp_secret_manager_project_id               = string<br><br>      gcp_tf_state_bucket_project_id_variable_name = optional(string)<br>      gcp_tf_state_bucket_project_id               = string<br><br>      bucket_name_variable_name = optional(string)<br>      bucket_name               = string<br><br>      bucket_location_variable_name = optional(string)<br>      bucket_location               = string<br>    }))<br>    custom = optional(object({<br>      organization_secrets   = map(string)<br>      organization_variables = map(string)<br>      repository_secrets     = map(map(string))<br>      repository_variables   = map(map(string))<br>    }))<br>  })</pre> | n/a | yes |

modules/github-foundations/rulesets.tf

@@ -1,5 +1,6 @@
 module "base_ruleset" {
   source = "../ruleset"
+  count  = var.account_type == "Enterprise" ? 1 : 0
 
   name         = "Foundation Repositories Base Ruleset"
   enforcement  = "active"
@@ -16,4 +17,4 @@ module "base_ruleset" {
 
   ref_name_inclusions        = ["~DEFAULT_BRANCH"]
   repository_name_inclusions = [github_repository.bootstrap_repo.name, github_repository.organizations_repo.name]
-}
+}

modules/github-foundations/variables.tf

@@ -55,3 +55,13 @@ variable "oidc_configuration" {
     error_message = "At least one oidc_configuration must be set."
   }
 }
+
+variable "account_type" {
+  type        = string
+  description = "The type of GitHub account being used. Should be one of either `Personal`, `Organization`, or `Enterprise`."
+
+  validation {
+    condition     = contains(["Personal", "Organization", "Enterprise"], var.account_type)
+    error_message = "The account type must be either `Personal`, `Organization`, or `Enterprise`."
+  }
+}