feat: [CCM-11423] Support for import of AWS ALB and Azure AppGateway …

…as AutoStopping Loadbalancer (#707)

* Introduced importing of Azure AppGateway for AutoStopping LB creation

* Support for import ALB as access point in AutoStopping

* Added support for specifying existing SSL certificate on importing Azure AppGateway

* Import Azure AppGateway for AutoStopping - tested version

* Added Azure app gateway import attributes to datasource

* Added example for import azure app gateway

* Support for creating Azure AppGateway as AutoStopping LB

* AutoStoppingRule - Made default LB delete option to be false by default for deleting cloud resources

* Resource file modifications for AutoStopping AWS ALB and Azure AppGateway

* Added example file for AutoStopping ALB import

* Docs for AutoStopping LBs

* Changelog

* Removed valid value set for optional attribute SKU size of Azure AppGateway in AutoStopping as the value is not mandatory

.changelog/707.txt

@@ -0,0 +1,4 @@
+```release-note:enhancement
+    - Support for import of ALB as AutoStopping Loadbalancer
+    - Support for import of AppGateway as AutoStopping Loadbalancer
+```

docs/data-sources/autostopping_aws_alb.md

@@ -31,6 +31,7 @@ data "harness_autostopping_aws_alb" "test" {
 
 ### Optional
 
+- `alb_arn` (String) Arn of AWS ALB to be imported. Required only for importing existing ALB
 - `certificate_id` (String)
 - `route53_hosted_zone_id` (String) Route 53 hosted zone id
 - `security_groups` (List of String) Security Group to define the security rules that determine the inbound and outbound traffic

docs/data-sources/autostopping_azure_gateway.md

@@ -25,14 +25,19 @@ data "harness_autostopping_azure_gateway" "test" {
 
 - `azure_func_region` (String) Region in which azure cloud function will be provisioned
 - `cloud_connector_id` (String) Id of the cloud connector
-- `frontend_ip` (String)
 - `host_name` (String) Hostname for the proxy
 - `name` (String) Name of the proxy
 - `region` (String) Region in which cloud resources are hosted
 - `resource_group` (String) Resource group in which cloud resources are hosted
+- `vpc` (String) VPC in which cloud resources are hosted
+
+### Optional
+
+- `app_gateway_id` (String) ID of Azure AppGateway for importing
+- `certificate_id` (String) ID of existing SSL certificate from AppGateway being imported. Required only for SSL based rules
+- `frontend_ip` (String) ID of IP address to be used. Required only for creating new AppGateway. See https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-components#static-versus-dynamic-public-ip-address for more details
 - `sku_size` (String) Size of machine used for the gateway
 - `subnet_id` (String) Subnet in which cloud resources are hosted
-- `vpc` (String) VPC in which cloud resources are hosted
 
 ### Read-Only
 

docs/resources/autostopping_aws_alb.md

@@ -22,6 +22,17 @@ resource "harness_autostopping_aws_alb" "test" {
   security_groups        = ["sg1", "sg2"]
   route53_hosted_zone_id = "/hostedzone/zone_id"
 }
+
+resource "harness_autostopping_aws_alb" "harness_alb" {
+  name                   = "harness_alb"
+  cloud_connector_id     = "cloud_connector_id"
+  host_name              = "host.name"
+  alb_arn                = "arn:aws:elasticloadbalancing:region:aws_account_id:loadbalancer/app/harness_alb/id"
+  region                 = "region"
+  vpc                    = "vpc"
+  security_groups        = ["sg-0"]
+  route53_hosted_zone_id = "/hostedzone/zone_id"
+}
 ```
 
 <!-- schema generated by tfplugindocs -->
@@ -37,6 +48,7 @@ resource "harness_autostopping_aws_alb" "test" {
 
 ### Optional
 
+- `alb_arn` (String) Arn of AWS ALB to be imported. Required only for importing existing ALB
 - `certificate_id` (String)
 - `route53_hosted_zone_id` (String) Route 53 hosted zone id
 - `security_groups` (List of String) Security Group to define the security rules that determine the inbound and outbound traffic

docs/resources/autostopping_azure_gateway.md

@@ -25,6 +25,18 @@ resource "harness_autostopping_azure_gateway" "test" {
   frontend_ip        = "/subscriptions/subscription_id/resourceGroups/resource_group/providers/Microsoft.Network/publicIPAddresses/publicip"
   sku_size           = "sku2"
 }
+
+resource "harness_autostopping_azure_gateway" "import_test" {
+  name               = "import_test"
+  cloud_connector_id = "cloud_connector_id"
+  host_name          = "host_name"
+  region             = "westus2"
+  resource_group     = "test_resource_group"
+  app_gateway_id     = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/applicationGateways/TestAppGateway"
+  certificate_id     = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/applicationGateways/TestAppGateway/sslCertificates/certificate_name"
+  azure_func_region  = "westus2"
+  vpc                = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/virtualNetworks/test_resource_group_vnet"
+}
 ```
 
 <!-- schema generated by tfplugindocs -->
@@ -34,14 +46,19 @@ resource "harness_autostopping_azure_gateway" "test" {
 
 - `azure_func_region` (String) Region in which azure cloud function will be provisioned
 - `cloud_connector_id` (String) Id of the cloud connector
-- `frontend_ip` (String)
 - `host_name` (String) Hostname for the proxy
 - `name` (String) Name of the proxy
 - `region` (String) Region in which cloud resources are hosted
 - `resource_group` (String) Resource group in which cloud resources are hosted
-- `sku_size` (String) Size of machine used for the gateway
-- `subnet_id` (String) Subnet in which cloud resources are hosted
-- `vpc` (String) VPC in which cloud resources are hosted
+- `vpc` (String) VNet in which cloud resources are hosted. Required only for creating new AppGateway
+
+### Optional
+
+- `app_gateway_id` (String) ID of Azure AppGateway for importing. Required only for importing exiging AppGateway
+- `certificate_id` (String) ID of existing SSL certificate from AppGateway being imported. Required only for importing existing AppGateway. Required only for SSL based rules
+- `frontend_ip` (String) ID of IP address to be used. Required only for creating new AppGateway. See https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-components#static-versus-dynamic-public-ip-address for more details
+- `sku_size` (String) Size of machine used for the gateway. Required only for creating new AppGateway
+- `subnet_id` (String) Subnet in which cloud resources are hosted. Required only for creating new AppGateway
 
 ### Read-Only
 

examples/resources/harness_autostopping_aws_alb/resource.tf

@@ -8,3 +8,13 @@ resource "harness_autostopping_aws_alb" "test" {
   route53_hosted_zone_id = "/hostedzone/zone_id"
 }
 
+resource "harness_autostopping_aws_alb" "harness_alb" {
+  name                   = "harness_alb"
+  cloud_connector_id     = "cloud_connector_id"
+  host_name              = "host.name"
+  alb_arn                = "arn:aws:elasticloadbalancing:region:aws_account_id:loadbalancer/app/harness_alb/id"
+  region                 = "region"
+  vpc                    = "vpc"
+  security_groups        = ["sg-0"]
+  route53_hosted_zone_id = "/hostedzone/zone_id"
+}

examples/resources/harness_autostopping_azure_gateway/resource.tf

@@ -10,3 +10,15 @@ resource "harness_autostopping_azure_gateway" "test" {
   frontend_ip        = "/subscriptions/subscription_id/resourceGroups/resource_group/providers/Microsoft.Network/publicIPAddresses/publicip"
   sku_size           = "sku2"
 }
+
+resource "harness_autostopping_azure_gateway" "import_test" {
+  name               = "import_test"
+  cloud_connector_id = "cloud_connector_id"
+  host_name          = "host_name"
+  region             = "westus2"
+  resource_group     = "test_resource_group"
+  app_gateway_id     = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/applicationGateways/TestAppGateway"
+  certificate_id     = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/applicationGateways/TestAppGateway/sslCertificates/certificate_name"
+  azure_func_region  = "westus2"
+  vpc                = "/subscriptions/subscription_id/resourceGroups/test_resource_group/providers/Microsoft.Network/virtualNetworks/test_resource_group_vnet"
+}

internal/service/platform/autostopping/load_balancer/aws_alb.go

@@ -67,6 +67,11 @@ func ResourceAwsALB() *schema.Resource {
 				Type:        schema.TypeString,
 				Optional:    true,
 			},
+			"alb_arn": {
+				Description: "Arn of AWS ALB to be imported. Required only for importing existing ALB",
+				Type:        schema.TypeString,
+				Optional:    true,
+			},
 		},
 	}
 
@@ -75,6 +80,9 @@ func ResourceAwsALB() *schema.Resource {
 
 func resourceAwsALBCreateOrUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
 	c, ctx := meta.(*internal.Session).GetPlatformClientWithContext(ctx)
-	lb := buildLoadBalancer(d, c.AccountId, "aws", "")
+	lb, err := buildLoadBalancer(d, c.AccountId, "aws", "")
+	if err != nil {
+		return diag.FromErr(err)
+	}
 	return resourceLoadBalancerCreateOrUpdate(ctx, d, meta, lb)
 }

internal/service/platform/autostopping/load_balancer/aws_alb_data_source.go

@@ -57,6 +57,11 @@ func DataSourceAwsALB() *schema.Resource {
 				Type:        schema.TypeString,
 				Optional:    true,
 			},
+			"alb_arn": {
+				Description: "Arn of AWS ALB to be imported. Required only for importing existing ALB",
+				Type:        schema.TypeString,
+				Optional:    true,
+			},
 		},
 	}
 	return resource

internal/service/platform/autostopping/load_balancer/aws_proxy.go

@@ -111,6 +111,9 @@ func ResourceAWSProxy() *schema.Resource {
 
 func resourceAWSProxyCreateOrUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
 	c, ctx := meta.(*internal.Session).GetPlatformClientWithContext(ctx)
-	lb := buildLoadBalancer(d, c.AccountId, "aws", "autostopping_proxy")
+	lb, err := buildLoadBalancer(d, c.AccountId, "aws", "autostopping_proxy")
+	if err != nil {
+		return diag.FromErr(err)
+	}
 	return resourceLoadBalancerCreateOrUpdate(ctx, d, meta, lb)
 }

internal/service/platform/autostopping/load_balancer/azure_gateway.go

@@ -50,29 +50,39 @@ func ResourceAzureGateway() *schema.Resource {
 				Required:    true,
 			},
 			"vpc": {
-				Description: "VPC in which cloud resources are hosted",
+				Description: "VNet in which cloud resources are hosted. Required only for creating new AppGateway",
 				Type:        schema.TypeString,
 				Required:    true,
 			},
 			"subnet_id": {
-				Description: "Subnet in which cloud resources are hosted",
+				Description: "Subnet in which cloud resources are hosted. Required only for creating new AppGateway",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
 			},
 			"azure_func_region": {
 				Description: "Region in which azure cloud function will be provisioned",
 				Type:        schema.TypeString,
 				Required:    true,
 			},
 			"frontend_ip": {
-				Description: "",
+				Description: "ID of IP address to be used. Required only for creating new AppGateway. See https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-components#static-versus-dynamic-public-ip-address for more details",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
 			},
 			"sku_size": {
-				Description: "Size of machine used for the gateway",
+				Description: "Size of machine used for the gateway. Required only for creating new AppGateway",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
+			},
+			"app_gateway_id": {
+				Description: "ID of Azure AppGateway for importing. Required only for importing exiging AppGateway",
+				Type:        schema.TypeString,
+				Optional:    true,
+			},
+			"certificate_id": {
+				Description: "ID of existing SSL certificate from AppGateway being imported. Required only for importing existing AppGateway. Required only for SSL based rules",
+				Type:        schema.TypeString,
+				Optional:    true,
 			},
 		},
 	}
@@ -82,6 +92,9 @@ func ResourceAzureGateway() *schema.Resource {
 
 func resourceAzureGatewayCreateOrUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
 	c, ctx := meta.(*internal.Session).GetPlatformClientWithContext(ctx)
-	lb := buildLoadBalancer(d, c.AccountId, "azure", "app_gateway")
+	lb, err := buildLoadBalancer(d, c.AccountId, "azure", "app_gateway")
+	if err != nil {
+		return diag.FromErr(err)
+	}
 	return resourceLoadBalancerCreateOrUpdate(ctx, d, meta, lb)
 }

internal/service/platform/autostopping/load_balancer/azure_gateway_data_source.go

@@ -47,22 +47,32 @@ func DataSourceAzureGateway() *schema.Resource {
 			"subnet_id": {
 				Description: "Subnet in which cloud resources are hosted",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
 			},
 			"azure_func_region": {
 				Description: "Region in which azure cloud function will be provisioned",
 				Type:        schema.TypeString,
 				Required:    true,
 			},
 			"frontend_ip": {
-				Description: "",
+				Description: "ID of IP address to be used. Required only for creating new AppGateway. See https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-components#static-versus-dynamic-public-ip-address for more details",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
 			},
 			"sku_size": {
 				Description: "Size of machine used for the gateway",
 				Type:        schema.TypeString,
-				Required:    true,
+				Optional:    true,
+			},
+			"app_gateway_id": {
+				Description: "ID of Azure AppGateway for importing",
+				Type:        schema.TypeString,
+				Optional:    true,
+			},
+			"certificate_id": {
+				Description: "ID of existing SSL certificate from AppGateway being imported. Required only for SSL based rules",
+				Type:        schema.TypeString,
+				Optional:    true,
 			},
 		},
 	}

internal/service/platform/autostopping/load_balancer/azure_proxy.go

@@ -121,6 +121,9 @@ func ResourceAzureProxy() *schema.Resource {
 
 func resourceAzureProxyCreateOrUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
 	c, ctx := meta.(*internal.Session).GetPlatformClientWithContext(ctx)
-	lb := buildLoadBalancer(d, c.AccountId, "azure", "autostopping_proxy")
+	lb, err := buildLoadBalancer(d, c.AccountId, "azure", "autostopping_proxy")
+	if err != nil {
+		return diag.FromErr(err)
+	}
 	return resourceLoadBalancerCreateOrUpdate(ctx, d, meta, lb)
 }

internal/service/platform/autostopping/load_balancer/gcp_proxy.go

@@ -111,6 +111,9 @@ func ResourceGCPProxy() *schema.Resource {
 
 func resourceGCPProxyCreateOrUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
 	c, ctx := meta.(*internal.Session).GetPlatformClientWithContext(ctx)
-	lb := buildLoadBalancer(d, c.AccountId, "gcp", "autostopping_proxy")
+	lb, err := buildLoadBalancer(d, c.AccountId, "gcp", "autostopping_proxy")
+	if err != nil {
+		return diag.FromErr(err)
+	}
 	return resourceLoadBalancerCreateOrUpdate(ctx, d, meta, lb)
 }