-
Notifications
You must be signed in to change notification settings - Fork 4.5k
/
resource_arm_security_center_subscription_pricing.go
110 lines (89 loc) · 3.61 KB
/
resource_arm_security_center_subscription_pricing.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
package securitycenter
import (
"fmt"
"log"
"time"
"github.com/Azure/azure-sdk-for-go/services/preview/security/mgmt/v1.0/security"
"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
"github.com/hashicorp/terraform-plugin-sdk/helper/validation"
"github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/clients"
"github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/timeouts"
"github.com/terraform-providers/terraform-provider-azurerm/azurerm/utils"
)
//NOTE: seems default is the only valid pricing name:
//Code="InvalidInputJson" Message="Pricing name 'kt's price' is not allowed. Expected 'default' for this scope."
const securityCenterSubscriptionPricingName = "default"
func resourceArmSecurityCenterSubscriptionPricing() *schema.Resource {
return &schema.Resource{
Create: resourceArmSecurityCenterSubscriptionPricingUpdate,
Read: resourceArmSecurityCenterSubscriptionPricingRead,
Update: resourceArmSecurityCenterSubscriptionPricingUpdate,
Delete: resourceArmSecurityCenterSubscriptionPricingDelete,
Importer: &schema.ResourceImporter{
State: schema.ImportStatePassthrough,
},
Timeouts: &schema.ResourceTimeout{
Create: schema.DefaultTimeout(60 * time.Minute),
Read: schema.DefaultTimeout(5 * time.Minute),
Update: schema.DefaultTimeout(60 * time.Minute),
Delete: schema.DefaultTimeout(60 * time.Minute),
},
Schema: map[string]*schema.Schema{
"tier": {
Type: schema.TypeString,
Required: true,
ValidateFunc: validation.StringInSlice([]string{
string(security.Free),
string(security.Standard),
}, false),
},
},
}
}
func resourceArmSecurityCenterSubscriptionPricingUpdate(d *schema.ResourceData, meta interface{}) error {
client := meta.(*clients.Client).SecurityCenter.PricingClient
ctx, cancel := timeouts.ForUpdate(meta.(*clients.Client).StopContext, d)
defer cancel()
name := securityCenterSubscriptionPricingName
// not doing import check as afaik it always exists (cannot be deleted)
// all this resource does is flip a boolean
pricing := security.Pricing{
PricingProperties: &security.PricingProperties{
PricingTier: security.PricingTier(d.Get("tier").(string)),
},
}
if _, err := client.UpdateSubscriptionPricing(ctx, name, pricing); err != nil {
return fmt.Errorf("Error creating/updating Security Center Subscription pricing: %+v", err)
}
resp, err := client.GetSubscriptionPricing(ctx, name)
if err != nil {
return fmt.Errorf("Error reading Security Center Subscription pricing: %+v", err)
}
if resp.ID == nil {
return fmt.Errorf("Security Center Subscription pricing ID is nil")
}
d.SetId(*resp.ID)
return resourceArmSecurityCenterSubscriptionPricingRead(d, meta)
}
func resourceArmSecurityCenterSubscriptionPricingRead(d *schema.ResourceData, meta interface{}) error {
client := meta.(*clients.Client).SecurityCenter.PricingClient
ctx, cancel := timeouts.ForRead(meta.(*clients.Client).StopContext, d)
defer cancel()
resp, err := client.GetSubscriptionPricing(ctx, securityCenterSubscriptionPricingName)
if err != nil {
if utils.ResponseWasNotFound(resp.Response) {
log.Printf("[DEBUG] Security Center Subscription was not found: %v", err)
d.SetId("")
return nil
}
return fmt.Errorf("Error reading Security Center Subscription pricing: %+v", err)
}
if properties := resp.PricingProperties; properties != nil {
d.Set("tier", properties.PricingTier)
}
return nil
}
func resourceArmSecurityCenterSubscriptionPricingDelete(_ *schema.ResourceData, _ interface{}) error {
log.Printf("[DEBUG] Security Center Subscription deletion invocation")
return nil //cannot be deleted.
}