Adds support for Magic Transit IPsec tunnels

[cehrig]

This PR adds a new resource for managing IPsec tunnels. The resource layout looks as follows:

resource "cloudflare_ipsec_tunnel" "example" {
  account_id          = "c4a7362d577a6c3019a474fd6f485821"
  name                = "IPsec_1"
  customer_endpoint   = "203.0.113.1"
  cloudflare_endpoint = "203.0.113.2"
  interface_address   = "10.212.0.5/31"
  description         = "Tunnel for ISP X"
}

A pending cloudflare-go PR cloudflare/cloudflare-go#787 is required for this feature. The provided acceptance tests will only be working when using an account with Magic Transit support.

The Create and Update methods occasionally run into a time out. I am checking with Magic team why that happens.

[jacobbednarz]

this will now need to update that we are not using the api.AccountID field and instead, pull it from the schema.

[cehrig]

Done, I hope I didn't miss any. I am actually not sure, how does meta behave when run in parallel on different resources with different account IDs? I think meta is not really protected from this, right?

[jacobbednarz]

i don't think so but i'd need to confirm the internals. it shouldn't be an issue though as in the Tenant use case, the client will be the same (authn/z) but the URLs will need to swap based on the account.

[cehrig]

Magic Team implemented a fix for the API time outs we were observing. Acceptance Tests started to pass

$ go test $(go list ./...) -v -run TestAccCloudflareIPsecTunnel
?       github.com/cloudflare/terraform-provider-cloudflare     [no test files]
=== RUN   TestAccCloudflareIPsecTunnelExists
--- PASS: TestAccCloudflareIPsecTunnelExists (30.88s)
=== RUN   TestAccCloudflareIPsecTunnelUpdateDescription
--- PASS: TestAccCloudflareIPsecTunnelUpdateDescription (48.68s)
PASS
ok      github.com/cloudflare/terraform-provider-cloudflare/cloudflare  79.576s
?       github.com/cloudflare/terraform-provider-cloudflare/tools/cmd/changelog-check   [no test files]
?       github.com/cloudflare/terraform-provider-cloudflare/version     [no test files]

[jacobbednarz]

@cehrig this now has the latest cloudflare-go changes. do you mind running the acceptance tests against your account before i merge?

[cehrig]

@cehrig this now has the latest cloudflare-go changes. do you mind running the acceptance tests against your account before i merge?

Thanks @jacobbednarz, looking good!

$ go mod vendor
go: downloading github.com/cloudflare/cloudflare-go v0.31.0
$ go test $(go list ./...) -v -run TestAccCloudflareIPsecTunnel
?       github.com/cloudflare/terraform-provider-cloudflare     [no test files]
=== RUN   TestAccCloudflareIPsecTunnelExists
--- PASS: TestAccCloudflareIPsecTunnelExists (35.37s)
=== RUN   TestAccCloudflareIPsecTunnelUpdateDescription
--- PASS: TestAccCloudflareIPsecTunnelUpdateDescription (55.68s)
PASS
ok      github.com/cloudflare/terraform-provider-cloudflare/cloudflare  91.060s
?       github.com/cloudflare/terraform-provider-cloudflare/tools/cmd/changelog-check   [no test files]
?       github.com/cloudflare/terraform-provider-cloudflare/version     [no test files]