forked from ovh/terraform-provider-ovh
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathresource_cloud_project_kube_oidc.go
143 lines (115 loc) · 4.3 KB
/
resource_cloud_project_kube_oidc.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
package ovh
import (
"fmt"
"log"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
)
func resourceCloudProjectKubeOIDC() *schema.Resource {
return &schema.Resource{
Create: resourceCloudProjectKubeOIDCCreate,
Read: resourceCloudProjectKubeOIDCRead,
Delete: resourceCloudProjectKubeOIDCDelete,
Update: resourceCloudProjectKubeOIDCUpdate,
Schema: map[string]*schema.Schema{
"service_name": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
DefaultFunc: schema.EnvDefaultFunc("OVH_CLOUD_PROJECT_SERVICE", nil),
},
"kube_id": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
},
"client_id": {
Type: schema.TypeString,
Required: true,
},
"issuer_url": {
Type: schema.TypeString,
Required: true,
},
},
}
}
func resourceCloudProjectKubeOIDCCreate(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeID := d.Get("kube_id").(string)
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/openIdConnect", serviceName, kubeID)
params := (&CloudProjectKubeOIDCCreateOpts{}).FromResource(d)
res := &CloudProjectKubeOIDCResponse{}
log.Printf("[DEBUG] Will create OIDC: %+v", params)
err := config.OVHClient.Post(endpoint, params, res)
if err != nil {
return fmt.Errorf("calling Post %s with params %s:\n\t %q", endpoint, params, err)
}
d.SetId(kubeID + "-" + params.ClientID + "-" + params.IssuerUrl)
log.Printf("[DEBUG] Waiting for kube %s to be READY", kubeID)
err = waitForCloudProjectKubeReady(config.OVHClient, serviceName, kubeID, []string{"REDEPLOYING"}, []string{"READY"})
if err != nil {
return fmt.Errorf("timeout while waiting kube %s to be READY: %v", kubeID, err)
}
log.Printf("[DEBUG] kube %s is READY", kubeID)
return resourceCloudProjectKubeOIDCRead(d, meta)
}
func resourceCloudProjectKubeOIDCRead(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeID := d.Get("kube_id").(string)
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/openIdConnect", serviceName, kubeID)
res := &CloudProjectKubeOIDCResponse{}
log.Printf("[DEBUG] Will read oidc from kube %s and project: %s", kubeID, serviceName)
err := config.OVHClient.Get(endpoint, res)
if err != nil {
return fmt.Errorf("calling get %s %q", endpoint, err)
}
for k, v := range res.ToMap() {
if k != "id" {
d.Set(k, v)
} else {
d.SetId(kubeID + "-" + res.ClientID + "-" + res.IssuerUrl)
}
}
log.Printf("[DEBUG] Read kube %+v", res)
return nil
}
func resourceCloudProjectKubeOIDCUpdate(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeID := d.Get("kube_id").(string)
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/openIdConnect", serviceName, kubeID)
params := (&CloudProjectKubeOIDCUpdateOpts{}).FromResource(d)
res := &CloudProjectKubeOIDCResponse{}
log.Printf("[DEBUG] Will update OIDC: %+v", params)
err := config.OVHClient.Put(endpoint, params, res)
if err != nil {
return fmt.Errorf("calling Put %s with params %s:\n\t %q", endpoint, params, err)
}
log.Printf("[DEBUG] Waiting for kube %s to be READY", kubeID)
err = waitForCloudProjectKubeReady(config.OVHClient, serviceName, kubeID, []string{"REDEPLOYING"}, []string{"READY"})
if err != nil {
return fmt.Errorf("timeout while waiting kube %s to be READY: %v", kubeID, err)
}
log.Printf("[DEBUG] kube %s is READY", kubeID)
return nil
}
func resourceCloudProjectKubeOIDCDelete(d *schema.ResourceData, meta interface{}) error {
config := meta.(*Config)
serviceName := d.Get("service_name").(string)
kubeID := d.Get("kube_id").(string)
endpoint := fmt.Sprintf("/cloud/project/%s/kube/%s/openIdConnect", serviceName, kubeID)
log.Printf("[DEBUG] Will delete OIDC")
err := config.OVHClient.Delete(endpoint, nil)
if err != nil {
return fmt.Errorf("calling delete %s %q", endpoint, err)
}
log.Printf("[DEBUG] Waiting for kube %s to be READY", kubeID)
err = waitForCloudProjectKubeReady(config.OVHClient, serviceName, kubeID, []string{"REDEPLOYING"}, []string{"READY"})
if err != nil {
return fmt.Errorf("timeout while waiting kube %s to be READY: %v", kubeID, err)
}
log.Printf("[DEBUG] kube %s is READY", kubeID)
return nil
}