-
Notifications
You must be signed in to change notification settings - Fork 132
/
resource_cloud_project_kube_iprestrictions.go
142 lines (117 loc) · 4.54 KB
/
resource_cloud_project_kube_iprestrictions.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
package ovh
import (
"fmt"
"log"
"net/url"
"strings"
"time"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"github.com/ovh/terraform-provider-ovh/ovh/helpers"
)
func resourceCloudProjectKubeIpRestrictions() *schema.Resource {
return &schema.Resource{
Create: resourceCloudProjectKubeIpRestrictionsCreateOrUpdate,
Update: resourceCloudProjectKubeIpRestrictionsCreateOrUpdate,
Delete: resourceCloudProjectKubeIpRestrictionsDelete,
Read: resourceCloudProjectKubeIpRestrictionsRead,
Importer: &schema.ResourceImporter{
State: resourceCloudProjectKubeIpRestrictionsImportState,
},
Timeouts: &schema.ResourceTimeout{
Create: schema.DefaultTimeout(10 * time.Minute),
Update: schema.DefaultTimeout(5 * time.Minute),
Delete: schema.DefaultTimeout(5 * time.Minute),
Read: schema.DefaultTimeout(5 * time.Minute),
Default: schema.DefaultTimeout(10 * time.Minute),
},
Schema: map[string]*schema.Schema{
"service_name": {
Type: schema.TypeString,
Description: "Service name",
Required: true,
ForceNew: true,
DefaultFunc: schema.EnvDefaultFunc("OVH_CLOUD_PROJECT_SERVICE", nil),
},
"kube_id": {
Type: schema.TypeString,
Description: "Kube ID",
Required: true,
ForceNew: true,
},
"ips": {
Type: schema.TypeSet,
Elem: &schema.Schema{Type: schema.TypeString},
Set: schema.HashString,
Description: "List of IP restrictions for the cluster",
Required: true,
},
},
}
}
func resourceCloudProjectKubeIpRestrictionsImportState(d *schema.ResourceData, meta interface{}) ([]*schema.ResourceData, error) {
givenId := d.Id()
splitId := strings.SplitN(givenId, "/", 3)
if len(splitId) != 2 {
return nil, fmt.Errorf("Import Id is not service_name/kubeid formatted")
}
serviceName := splitId[0]
kubeId := splitId[1]
d.SetId(kubeId)
d.Set("kube_id", kubeId)
d.Set("service_name", serviceName)
results := make([]*schema.ResourceData, 1)
results[0] = d
return results, nil
}
func resourceCloudProjectKubeIpRestrictionsRead(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeId := d.Get("kube_id").(string)
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/ipRestrictions", url.PathEscape(serviceName), url.PathEscape(kubeId))
res := make(CloudProjectKubeIpRestrictionsResponse, 0)
log.Printf("[DEBUG] Will read iprestrictions from cluster %s in project %s", kubeId, serviceName)
if err := config.OVHClient.Get(endpoint, &res); err != nil {
return helpers.CheckDeleted(d, err, endpoint)
}
d.SetId(kubeId)
d.Set("ips", res)
log.Printf("[DEBUG] Read iprestrictions: %+v", res)
return nil
}
func resourceCloudProjectKubeIpRestrictionsCreateOrUpdate(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeId := d.Get("kube_id").(string)
params := (&CloudProjectKubeIpRestrictionsCreateOrUpdateOpts{}).FromResource(d)
err := resourceCloudProjectKubeIpRestrictionsUpdate(d, config, serviceName, kubeId, params)
if err != nil {
return err
}
output := resourceCloudProjectKubeIpRestrictionsRead(d, meta)
d.SetId(kubeId)
return output
}
func resourceCloudProjectKubeIpRestrictionsDelete(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeId := d.Get("kube_id").(string)
return resourceCloudProjectKubeIpRestrictionsUpdate(d, config, serviceName, kubeId, &CloudProjectKubeIpRestrictionsCreateOrUpdateOpts{
Ips: []string{},
})
}
func resourceCloudProjectKubeIpRestrictionsUpdate(d *schema.ResourceData, config *Config, serviceName string, kubeId string, params *CloudProjectKubeIpRestrictionsCreateOrUpdateOpts) error {
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/ipRestrictions", url.PathEscape(serviceName), url.PathEscape(kubeId))
res := make(CloudProjectKubeIpRestrictionsResponse, 0)
log.Printf("[DEBUG] Will update iprestrictions: %+v", params)
err := config.OVHClient.Put(endpoint, params, &res)
if err != nil {
return fmt.Errorf("calling Put %s with params %s:\n\t %q", endpoint, params, err)
}
log.Printf("[DEBUG] Waiting for kube %s to be READY", kubeId)
err = waitForCloudProjectKubeReady(config.OVHClient, serviceName, kubeId, []string{"REDEPLOYING", "RESETTING"}, []string{"READY"}, d.Timeout(schema.TimeoutUpdate))
if err != nil {
return fmt.Errorf("timeout while waiting kube %s to be READY: %v", kubeId, err)
}
log.Printf("[DEBUG] kube %s is READY", kubeId)
return nil
}