Manage organization teams, memberships and access using a configuration file #73
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Conditional Invite to Organization on Approval Comment | |
on: | |
issue_comment: | |
types: [created] | |
jobs: | |
check-team-membership: | |
runs-on: ubuntu-latest | |
outputs: | |
is_team_member: ${{ steps.check_membership.outputs.is_team_member }} | |
steps: | |
- name: Check if commenter is in the admins team | |
id: check_membership | |
run: | | |
ROLE=$(gh api -X GET /orgs/django-commons/teams/admins/memberships/${{ github.event.comment.user.login }} --jq '.role') | |
if [[ "$ROLE" == "maintainer" ]]; then | |
echo "is_team_member=true" >> $GITHUB_OUTPUT | |
else | |
echo "is_team_member=false" >> $GITHUB_OUTPUT | |
fi | |
env: | |
GH_TOKEN: ${{ secrets.ORG_CONTROLS_PAT }} | |
continue-on-error: true # Prevents the workflow from failing if the user is not a team member. | |
invite: | |
needs: check-team-membership | |
if: needs.check-team-membership.outputs.is_team_member == 'true' && github.event.comment.body == 'Approved' | |
runs-on: ubuntu-latest | |
steps: | |
- name: Fetch user to invite from issue title | |
run: echo "User to invite is ${{ github.event.issue.user.login }}" | |
- name: Invite User to Organization | |
run: | | |
gh api -X PUT /orgs/django-commons/memberships/${{ github.event.issue.user.login }} | |
env: | |
GITHUB_TOKEN: ${{ secrets.ORG_CONTROLS_PAT }} | |
- name: Close Issue | |
if: success() | |
run: | | |
gh issue close "${{ github.event.issue.number }}" -r 'completed' --repo ${{ github.repository }} | |
env: | |
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} |