-
Notifications
You must be signed in to change notification settings - Fork 0
/
resource_global_permissions_group.go
89 lines (75 loc) · 2.23 KB
/
resource_global_permissions_group.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
package bitbucket
import (
"fmt"
"github.com/hashicorp/terraform/helper/schema"
"github.com/hashicorp/terraform/helper/validation"
"net/url"
)
func resourceGlobalPermissionsGroup() *schema.Resource {
return &schema.Resource{
Create: resourceGlobalPermissionsGroupCreate,
Update: resourceGlobalPermissionsGroupUpdate,
Read: resourceGlobalPermissionsGroupRead,
Delete: resourceGlobalPermissionsGroupDelete,
Importer: &schema.ResourceImporter{
State: schema.ImportStatePassthrough,
},
Schema: map[string]*schema.Schema{
"group": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
},
"permission": {
Type: schema.TypeString,
Required: true,
ValidateFunc: validation.StringInSlice([]string{"LICENSED_USER", "PROJECT_CREATE", "ADMIN", "SYS_ADMIN"}, false),
},
},
}
}
func resourceGlobalPermissionsGroupUpdate(d *schema.ResourceData, m interface{}) error {
client := m.(*BitbucketServerProvider).BitbucketClient
_, err := client.Put(fmt.Sprintf("/rest/api/1.0/admin/permissions/groups?permission=%s&name=%s",
url.QueryEscape(d.Get("permission").(string)),
url.QueryEscape(d.Get("group").(string)),
), nil)
if err != nil {
return err
}
return resourceGlobalPermissionsGroupRead(d, m)
}
func resourceGlobalPermissionsGroupCreate(d *schema.ResourceData, m interface{}) error {
err := resourceGlobalPermissionsGroupUpdate(d, m)
if err != nil {
return err
}
d.SetId(d.Get("group").(string))
return resourceGlobalPermissionsGroupRead(d, m)
}
func resourceGlobalPermissionsGroupRead(d *schema.ResourceData, m interface{}) error {
id := d.Id()
if id != "" {
_ = d.Set("group", id)
}
group := d.Get("group").(string)
groups, err := readGlobalPermissionsGroups(m, group)
if err != nil {
return err
}
// API only filters but we need to find an exact match
for _, g := range groups {
if g.Name == group {
_ = d.Set("permission", g.Permission)
break
}
}
return nil
}
func resourceGlobalPermissionsGroupDelete(d *schema.ResourceData, m interface{}) error {
client := m.(*BitbucketServerProvider).BitbucketClient
_, err := client.Delete(fmt.Sprintf("/rest/api/1.0/admin/permissions/groups?name=%s",
url.QueryEscape(d.Get("group").(string)),
))
return err
}