Add support for Azure DevOps RunPipelines service endpoint

[zhmurko]

All Submissions:

• Have you added an explanation of what your changes do and why you'd like us to include them?
• I have updated the documentation accordingly.
• I have added tests to cover my changes.
• All new and existing tests passed.
• My code follows the code style of this project.
• I ran lint checks locally prior to submission.
• Have you checked to ensure there aren't other open PRs for the same update/change?

What about the current behavior has changed?

This pull request introduces a new resource azuredevops_serviceendpoint_devops that allows to manage Azure DevOps Service Connection. This connection is used to trigger subsequent builds from Azure Pipelines with task: RunPipelines@1 yaml definition.

Fix for Issue Number: #182

Does this introduce a change to go.mod, go.sum or vendor/?

• Yes
• No

Does this introduce a breaking change?

• Yes
• No

(If it’s long, please paste to https://ghostbin.com/ and insert the link here.)

Other information

[ghost]

All CLA requirements met.

[zhmurko]

build has failed by 60 minutes timeout. need a rebuild or increase azdo job timeout.

[xuzhang3]

@zhmurko Is 'azdoapi' a new devops extension developed by your team? I cannot find an extension type azdoapi . If you means Azure Repos/Team Foundation Server, the type should be externaltfs

Error message:

--- FAIL: TestAccServiceEndpointAzureDevOps_PersonalTokenBasic (24.82s)
    testing.go:673: Step 0 error: errors during apply:
        
        Error: Error creating service endpoint in Azure DevOps: Unable to find service connection type 'azdoapi' using authentication scheme 'Token'.
        
          on /tmp/tf-test450287256/main.tf line 10:
          (source code not available)

[zhmurko]

hello @xuzhang3 thank you for looking into this issue.
I was pretty sure that's generally pre-installed type of Service Connection, but it turns out that it's one of Extensions installed from Marketplace manually: CSE-DevOps.RunPipelines
The "azdoapi" is a type of "Azure DevOps Service Connection" as shown on the screenshot below:

The value was picked up from API call to https://dev.azure.com/my-org-name/_apis/serviceendpoint/endpoints on save action via UI on Azure DevOps Cloud portal.
We use this service connection to trigger subsequent builds from YAML pipelines and really desire to create such endpoints with Terraform code altogether with the infrastructure.

[xuzhang3]

Suggested change

	terraform import azuredevops_serviceendpoint_devops.serviceendpoint db0541e6-ae9f-474d-ab83-1f7913839080
	terraform import azuredevops_serviceendpoint_devops.serviceendpoint projectID/00000000-0000-0000-0000-000000000000`

[zhmurko]

[x] updated this documentation page

[xuzhang3]

Suggested change

	Azure DevOps Service Endpoint can be imported using the serviceendpoint id (resourceId in your browser's url bar), e.g.
	Azure DevOps Service Endpoint can be imported using the `project id`, `service connection id` , e.g.

[zhmurko]

[x] updated this documentation page

[xuzhang3]

Unused code lines can be removed

[zhmurko]

[x] removed the commented examples

[xuzhang3]

Unused code lines can be removed.

[zhmurko]

[x] removed the commented examples

[xuzhang3]

Can we rename organization to organization_name or org_name ?

[zhmurko]

[x] renamed organization to organization_name and updated the documentation page

[xuzhang3]

Conflict schema can be removed.

[zhmurko]

[x] removed ConflictsWith

[xuzhang3]

If I skip the auth_personal configuration, after execute terraform apply, I got error:

Error: Error updating service endpoint in Azure DevOps: Unable to find service connection type 'azdoapi' using authentication scheme 'InstallationToken'.

  on main.tf line 5, in resource "azuredevops_serviceendpoint_devops" "serviceendpoint":
   5: resource "azuredevops_serviceendpoint_devops" "serviceendpoint" {

[zhmurko]

added a unit test for default settings with empty auth_personal personal block

[xuzhang3]

Duplicate with personalAccessToken

[zhmurko]

[x] removed this constant value

[xuzhang3]

project_name has been renamed to name in the latest master

[zhmurko]

[x] renamed project_name to name in project definition in this example

[xuzhang3]

This test case is duplicate with TestAccServiceEndpointAzureDevOps_PersonalTokenUpdate

[zhmurko]

[x] removed this test case and added a test case for default settings

[zhmurko]

@xuzhang3 thank you for suggestions, I'm going to review and implement them soon

[zhmurko]

hi @xuzhang3
please review the updated pull request, all your suggestions are implemented.

[zhmurko]

and one question, does it worth to rename this resource to azuredevops_serviceendpoint_runpipeline to avoid confusions? in the UI this service connection is called just as a "Azure DevOps Service Connection", that may lead to miscommunication.

[xuzhang3]

and one question, does it worth to rename this resource to azuredevops_serviceendpoint_runpipelines to avoid confusions? in the UI this service connection is called just as a "Azure DevOps Service Connection", that may lead to miscommunication.

I would suggest rename with azuredevops_serviceendpoint_pipelinerunner or azuredevops_serviceendpoint_pipelinedelegator, this extension is kind like the admin of another pipeline.

[zhmurko]

so I will refactor the code and docs with azuredevops_serviceendpoint_pipelinerunner resource name.

[xuzhang3]

Few changes requested but otherwise looks good. Can we rename function name prefix azdo to another name like pipelineRunner or something else, it's a bit odd with prefix azdo

[xuzhang3]

variable name style should follow camel style

[xuzhang3]

function expandServiceEndpointAzureDevOps never throw an error, I would suggest remove the error from the return parameter.

[zhmurko]

done

[zhmurko]

hi @xuzhang3
the refactoring has been completed. The build now fails again on Unable to find service connection type 'azdoapi' message, and I believe it's related to disabled/removed plugin RunPipelines from AzureDevOps. Could you please enable it so acceptance test can pass.

[xuzhang3]

LGTM