feat(codebuild): add support of organization webhook in github source

[dviryamin]

Issue # (if applicable)

closes #31736

Reason for this change

Currently, the AWS CDK aws-codebuild module lacks native support for creating GitHub organization-level webhooks through the Source construct. Users need to manually use the CfnProject to enable organization webhooks, which adds complexity and inconsistency to the CodeBuild setup. This PR introduces support for creating GitHub organization webhooks directly within the Source construct, streamlining the experience and making it more consistent with the rest of the AWS CDK's high-level constructs.

Description of changes

• Enhanced the GitHubSource construct in the aws-codebuild module to support GitHub organization webhooks.
• Updated the GitHubSource construct's configuration to so when repo is not specified an organization webhook is created.
• Added filter of REPOSITORY_NAME to FilterGroups.

Description of how you validated changes

• Added unit tests to validate that organization-level webhooks are created correctly when repo is not specified.
• Ran integration tests to ensure that the changes do not break any existing functionality related to project webhooks.
• Tested deployment of a CodeBuild project with organization webhook setup in a sample CDK application to verify end-to-end functionality.

Checklist

• My code adheres to the CONTRIBUTING GUIDE and DESIGN GUIDELINES

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[aws-cdk-automation]

The pull request linter has failed. See the aws-cdk-automation comment below for failure reasons. If you believe this pull request should receive an exemption, please comment and provide a justification.

A comment requesting an exemption should contain the text Exemption Request. Additionally, if clarification is needed add Clarification Request to a comment.

✅ Updated pull request passes all PRLinter validations. Dismissing previous PRLinter review.

[shivatalwar]

This is great - any blockers on getting this merged

[GavinZZ]

@dviryamin do you need any help with the failed integ test?

[dviryamin]

Hi @GavinZZ,
Thank you for offering to help! I’ve updated the integration test snapshot with the new default image, so the tests should pass now. I’d really appreciate it if you could take a moment to review the PR when you have time. Looking forward to your feedback!

[GavinZZ]

Left some questions and feedback. Mainly for my own understanding.

[GavinZZ]

I'm not too familiar with organization webhook with github source, but I'm reading this official documentation https://docs.aws.amazon.com/codebuild/latest/userguide/github-global-organization-webhook-setup.html.

Hopefully you can help answer my clarifying questions to help me review this PR. In the above link step 2, it mentions set the scope configuration to either GITHUB_ORGANIZATION or GITHUB_GLOBAL, but step 3 says use the organization name as scope.

[dviryamin]

Step 2 it's a toggle between GitHub Global (for enterprise level webhooks) and GitHub Organization (for organization webhooks).
In step 3 you specify the Enterprise name or the Organization name depending on what you choose in step 2.
Anyway, cloudformation only supports Organization webhooks as mentioned here.

[GavinZZ]

I assume this refers to repository name, is this saying a repository name that

1. starts with aws-cdk. or (if this is the case, I assume no repo is named like this and is this just for demo purpose showing how to use regex)?
2. starts with aws-cdk and .* is regex saying one or more at the end

[dviryamin]

It means repository name that starts with aws-cdk and can have more characters after that.
.* means zero or more characters.
If you have a better example for demonstrating usage of regex pattern it will be great.

[GavinZZ]

can we also test webhookFilter here since webhook filter's logic also changes if it's organization github source.

[dviryamin]

Yeah I'll add tests for FilterGroups.

[dviryamin]

Done!

Pull request has been modified.

[mergify]

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

[aws-cdk-automation]

AWS CodeBuild CI Report

• CodeBuild project: AutoBuildv2Project1C6BFA3F-wQm2hXv2jqQv
• Commit ID: 12d9825
• Result: SUCCEEDED
• Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

[mergify]

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

[github-actions]

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.