This repository has been archived by the owner on Jul 27, 2020. It is now read-only.
forked from cloudflare/terraform-provider-cloudflare
-
Notifications
You must be signed in to change notification settings - Fork 5
/
resource_cloudflare_access_application.go
150 lines (120 loc) · 4.5 KB
/
resource_cloudflare_access_application.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
package cloudflare
import (
"fmt"
"log"
"strings"
cloudflare "github.com/cloudflare/cloudflare-go"
"github.com/hashicorp/terraform/helper/schema"
"github.com/hashicorp/terraform/helper/validation"
)
func resourceCloudflareAccessApplication() *schema.Resource {
return &schema.Resource{
Create: resourceCloudflareAccessApplicationCreate,
Read: resourceCloudflareAccessApplicationRead,
Update: resourceCloudflareAccessApplicationUpdate,
Delete: resourceCloudflareAccessApplicationDelete,
Importer: &schema.ResourceImporter{
State: resourceCloudflareAccessApplicationImport,
},
Schema: map[string]*schema.Schema{
"zone_id": {
Type: schema.TypeString,
Required: true,
},
"aud": {
Type: schema.TypeString,
Computed: true,
},
"name": {
Type: schema.TypeString,
Required: true,
},
"domain": {
Type: schema.TypeString,
Required: true,
},
"session_duration": {
Type: schema.TypeString,
Optional: true,
Default: "24h",
ValidateFunc: validation.StringInSlice([]string{"30m", "6h", "12h", "24h", "168h", "730h"}, false),
},
},
}
}
func resourceCloudflareAccessApplicationCreate(d *schema.ResourceData, meta interface{}) error {
client := meta.(*cloudflare.API)
zoneID := d.Get("zone_id").(string)
newAccessApplication := cloudflare.AccessApplication{
Name: d.Get("name").(string),
Domain: d.Get("domain").(string),
SessionDuration: d.Get("session_duration").(string),
}
log.Printf("[DEBUG] Creating Cloudflare Access Application from struct: %+v", newAccessApplication)
accessApplication, err := client.CreateAccessApplication(zoneID, newAccessApplication)
if err != nil {
return fmt.Errorf("error creating Access Application for zone %q: %s", zoneID, err)
}
d.SetId(accessApplication.ID)
return resourceCloudflareAccessApplicationRead(d, meta)
}
func resourceCloudflareAccessApplicationRead(d *schema.ResourceData, meta interface{}) error {
client := meta.(*cloudflare.API)
zoneID := d.Get("zone_id").(string)
accessApplication, err := client.AccessApplication(zoneID, d.Id())
if err != nil {
if strings.Contains(err.Error(), "HTTP status 404") {
log.Printf("[INFO] Access Application %s no longer exists", d.Id())
d.SetId("")
return nil
}
return fmt.Errorf("Error finding Access Application %q: %s", d.Id(), err)
}
d.Set("aud", accessApplication.AUD)
d.Set("session_duration", accessApplication.SessionDuration)
d.Set("domain", accessApplication.Domain)
return nil
}
func resourceCloudflareAccessApplicationUpdate(d *schema.ResourceData, meta interface{}) error {
client := meta.(*cloudflare.API)
zoneID := d.Get("zone_id").(string)
updatedAccessApplication := cloudflare.AccessApplication{
ID: d.Id(),
Name: d.Get("name").(string),
Domain: d.Get("domain").(string),
SessionDuration: d.Get("session_duration").(string),
}
log.Printf("[DEBUG] Updating Cloudflare Access Application from struct: %+v", updatedAccessApplication)
accessApplication, err := client.UpdateAccessApplication(zoneID, updatedAccessApplication)
if err != nil {
return fmt.Errorf("error updating Access Application for zone %q: %s", zoneID, err)
}
if accessApplication.ID == "" {
return fmt.Errorf("failed to find Access Application ID in update response; resource was empty")
}
return resourceCloudflareAccessApplicationRead(d, meta)
}
func resourceCloudflareAccessApplicationDelete(d *schema.ResourceData, meta interface{}) error {
client := meta.(*cloudflare.API)
zoneID := d.Get("zone_id").(string)
appID := d.Id()
log.Printf("[DEBUG] Deleting Cloudflare Access Application using ID: %s", appID)
err := client.DeleteAccessApplication(zoneID, appID)
if err != nil {
return fmt.Errorf("error deleting Access Application for zone %q: %s", zoneID, err)
}
resourceCloudflareAccessApplicationRead(d, meta)
return nil
}
func resourceCloudflareAccessApplicationImport(d *schema.ResourceData, meta interface{}) ([]*schema.ResourceData, error) {
attributes := strings.SplitN(d.Id(), "/", 2)
if len(attributes) != 2 {
return nil, fmt.Errorf("invalid id (\"%s\") specified, should be in format \"zoneID/accessApplicationID\"", d.Id())
}
zoneID, accessApplicationID := attributes[0], attributes[1]
log.Printf("[DEBUG] Importing Cloudflare Access Application: id %s for zone %s", accessApplicationID, zoneID)
d.Set("zone_id", zoneID)
d.SetId(accessApplicationID)
resourceCloudflareAccessApplicationRead(d, meta)
return []*schema.ResourceData{d}, nil
}