-
Notifications
You must be signed in to change notification settings - Fork 36
/
permission_grant.go
80 lines (66 loc) · 2.55 KB
/
permission_grant.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
// Licensed to the Apache Software Foundation (ASF) under one
// or more contributor license agreements. See the NOTICE file
// distributed with this work for additional information
// regarding copyright ownership. The ASF licenses this file
// to you under the Apache License, Version 2.0 (the
// "License"); you may not use this file except in compliance
// with the License. You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing,
// software distributed under the License is distributed on an
// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
// KIND, either express or implied. See the License for the
// specific language governing permissions and limitations
// under the License.
package pulsar
import (
"bytes"
"fmt"
"github.com/apache/pulsar-client-go/pulsaradmin/pkg/utils"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"github.com/streamnative/terraform-provider-pulsar/hashcode"
"github.com/streamnative/terraform-provider-pulsar/types"
)
func permissionGrantToHash(v interface{}) int {
var buf bytes.Buffer
m := v.(map[string]interface{})
buf.WriteString(fmt.Sprintf("%s-", m["role"].(string)))
buf.WriteString(fmt.Sprintf("%s-", m["actions"].([]string)))
return hashcode.String(buf.String())
}
func unmarshalPermissionGrants(v *schema.Set) ([]*types.PermissionGrant, error) {
grants := v.List()
permissionGrants := make([]*types.PermissionGrant, 0, len(grants))
for _, grant := range grants {
data := grant.(map[string]interface{})
var permissionGrant types.PermissionGrant
permissionGrant.Role = data["role"].(string)
var actions []utils.AuthAction
for _, action := range data["actions"].(*schema.Set).List() {
authAction, err := utils.ParseAuthAction(action.(string))
if err != nil {
return nil, fmt.Errorf("ERROR_INVALID_AUTH_ACTION: %w", err)
}
actions = append(actions, authAction)
}
permissionGrant.Actions = actions
permissionGrants = append(permissionGrants, &permissionGrant)
}
return permissionGrants, nil
}
func setPermissionGrant(d *schema.ResourceData, grants map[string][]utils.AuthAction) {
permissionGrants := []interface{}{}
for role, roleActions := range grants {
actions := []string{}
for _, action := range roleActions {
actions = append(actions, action.String())
}
permissionGrants = append(permissionGrants, map[string]interface{}{
"role": role,
"actions": actions,
})
}
_ = d.Set("permission_grant", schema.NewSet(permissionGrantToHash, permissionGrants))
}