-
Notifications
You must be signed in to change notification settings - Fork 353
/
resource_databricks_group.go
151 lines (134 loc) · 4.21 KB
/
resource_databricks_group.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
package databricks
import (
"github.com/databrickslabs/databricks-terraform/client/model"
"github.com/databrickslabs/databricks-terraform/client/service"
"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
"log"
)
func resourceGroup() *schema.Resource {
return &schema.Resource{
Create: resourceGroupCreate,
Update: resourceGroupUpdate,
Read: resourceGroupRead,
Delete: resourceGroupDelete,
Schema: map[string]*schema.Schema{
"display_name": {
Type: schema.TypeString,
ForceNew: true,
Required: true,
},
"allow_cluster_create": {
Deprecated: "Will be deprecated in a future release for general permissions api",
Type: schema.TypeBool,
Optional: true,
},
"allow_instance_pool_create": {
Deprecated: "Will be deprecated in a future release for general permissions api",
Type: schema.TypeBool,
Optional: true,
},
},
Importer: &schema.ResourceImporter{
State: schema.ImportStatePassthrough,
},
}
}
func resourceGroupCreate(d *schema.ResourceData, m interface{}) error {
client := m.(*service.DBApiClient)
groupName := d.Get("display_name").(string)
allowClusterCreate := d.Get("allow_cluster_create").(bool)
allowInstancePoolCreate := d.Get("allow_instance_pool_create").(bool)
// If entitlement flags are set to be true
var entitlementsList []string
if allowClusterCreate {
entitlementsList = append(entitlementsList, string(model.AllowClusterCreateEntitlement))
}
if allowInstancePoolCreate {
entitlementsList = append(entitlementsList, string(model.AllowInstancePoolCreateEntitlement))
}
group, err := client.Groups().Create(groupName, nil, nil, entitlementsList)
if err != nil {
return err
}
d.SetId(group.ID)
return resourceGroupRead(d, m)
}
func resourceGroupRead(d *schema.ResourceData, m interface{}) error {
id := d.Id()
client := m.(*service.DBApiClient)
group, err := client.Groups().Read(id)
if err != nil {
if isScimGroupMissing(err.Error(), id) {
log.Printf("Missing scim group with id: %s.", id)
d.SetId("")
return nil
}
return err
}
err = d.Set("display_name", group.DisplayName)
if err != nil {
return err
}
err = d.Set("allow_cluster_create", isGroupClusterCreateEntitled(&group))
if err != nil {
return err
}
err = d.Set("allow_instance_pool_create", isGroupInstancePoolCreateEntitled(&group))
return err
}
func resourceGroupUpdate(d *schema.ResourceData, m interface{}) error {
id := d.Id()
client := m.(*service.DBApiClient)
// Handle entitlements update
var entitlementsAddList []string
var entitlementsRemoveList []string
// If allow_cluster_create has changed
if d.HasChange("allow_cluster_create") {
allowClusterCreate := d.Get("allow_cluster_create").(bool)
// Changed to true
if allowClusterCreate {
entitlementsAddList = append(entitlementsAddList, string(model.AllowClusterCreateEntitlement))
}
// Changed to false
entitlementsRemoveList = append(entitlementsRemoveList, string(model.AllowClusterCreateEntitlement))
}
// If allow_instance_pool_create has changed
if d.HasChange("allow_instance_pool_create") {
allowClusterCreate := d.Get("allow_instance_pool_create").(bool)
// Changed to true
if allowClusterCreate {
entitlementsAddList = append(entitlementsAddList, string(model.AllowClusterCreateEntitlement))
}
// Changed to false
entitlementsRemoveList = append(entitlementsRemoveList, string(model.AllowClusterCreateEntitlement))
}
if entitlementsAddList != nil || entitlementsRemoveList != nil {
err := client.Groups().Patch(id, entitlementsAddList, entitlementsRemoveList, model.GroupEntitlementsPath)
if err != nil {
return err
}
}
return nil
}
func resourceGroupDelete(d *schema.ResourceData, m interface{}) error {
id := d.Id()
client := m.(*service.DBApiClient)
err := client.Groups().Delete(id)
return err
}
func isGroupClusterCreateEntitled(group *model.Group) bool {
for _, entitlement := range group.Entitlements {
if entitlement.Value == model.AllowClusterCreateEntitlement {
return true
}
}
return false
}
func isGroupInstancePoolCreateEntitled(group *model.Group) bool {
for _, entitlement := range group.Entitlements {
if entitlement.Value == model.AllowClusterCreateEntitlement {
return true
}
}
return false
}