feat: add iam_resourcegroup data and resources

Author: fehrnah

ovh/data_iam_resource_group_test.go

@@ -0,0 +1,146 @@
+package ovh
+
+import (
+	"fmt"
+	"os"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+)
+
+func TestAccIamResourceGroupDataSource_basic(t *testing.T) {
+	resourceGroupName1 := acctest.RandomWithPrefix(test_prefix)
+	resourceGroupName2 := acctest.RandomWithPrefix(test_prefix)
+
+	resource1 := "urn:v1:eu:resource:vrack:" + os.Getenv("OVH_VRACK_SERVICE_TEST")
+	resource2 := "urn:v1:eu:resource:vps:" + os.Getenv("OVH_VPS")
+
+	preSetup := fmt.Sprintf(
+		testAccIamResourceGroupDatasourceConfigInit,
+		resourceGroupName1,
+		resource1,
+		resourceGroupName2,
+		resource1,
+		resource2,
+	)
+
+	dataConfig := fmt.Sprintf(
+		testAccIamResourceGroupDatasourceConfigData,
+		resourceGroupName1,
+		resource1,
+		resourceGroupName2,
+		resource1,
+		resource2,
+	)
+
+	config := fmt.Sprintf(
+		testAccIamResourceGroupDatasourceConfigList,
+		resourceGroupName1,
+		resource1,
+		resourceGroupName2,
+		resource1,
+		resource2,
+	)
+
+	checks := append(
+		checkIamResourceGroupResourceAttr("ovh_iam_resource_group.resource_group_1", resourceGroupName1, resource1),
+		checkIamResourceGroupResourceAttr("ovh_iam_resource_group.resource_group_2", resourceGroupName2, resource1, resource2)...,
+	)
+
+	checksData := append(
+		checkIamResourceGroupResourceAttr("data.ovh_iam_resource_group.resource_group_1", resourceGroupName1, resource1),
+		checkIamResourceGroupResourceAttr("data.ovh_iam_resource_group.resource_group_2", resourceGroupName2, resource1, resource2)...,
+	)
+
+	resource.Test(t, resource.TestCase{
+		PreCheck: func() {
+			testAccPreCheckIamResourceGroup(t)
+		},
+		Providers: testAccProviders,
+		Steps: []resource.TestStep{
+			{
+				Config: preSetup,
+				Check:  resource.ComposeTestCheckFunc(checks...),
+			}, {
+				Config: dataConfig,
+				Check:  resource.ComposeTestCheckFunc(checksData...),
+			}, {
+				Config: config,
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckOutput("keys_present", "true"),
+				),
+			},
+		},
+	})
+}
+
+func checkIamResourceGroupResourceAttr(name, grpName string, resourceURNs ...string) []resource.TestCheckFunc {
+	checks := []resource.TestCheckFunc{
+		resource.TestCheckResourceAttr(name, "name", grpName),
+	}
+	for _, urn := range resourceURNs {
+		checks = append(checks,
+			resource.TestCheckTypeSetElemAttr(name, "resources.*", urn),
+		)
+	}
+	return checks
+}
+
+const testAccIamResourceGroupDatasourceConfigInit = `
+resource "ovh_iam_resource_group" "resource_group_1" {
+	name        = "%s"
+	resources   = ["%s"]
+}
+
+resource "ovh_iam_resource_group" "resource_group_2" {
+	name        = "%s"
+	resources   = ["%s", "%s"]
+}
+`
+
+const testAccIamResourceGroupDatasourceConfigData = `
+resource "ovh_iam_resource_group" "resource_group_1" {
+	name        = "%s"
+	resources   = ["%s"]
+}
+
+resource "ovh_iam_resource_group" "resource_group_2" {
+	name        = "%s"
+	resources   = ["%s", "%s"]
+}
+
+data "ovh_iam_resource_group" "resource_group_1" {
+	id = ovh_iam_resource_group.resource_group_1.id
+}
+
+data "ovh_iam_resource_group" "resource_group_2" {
+	id = ovh_iam_resource_group.resource_group_2.id
+}
+`
+
+const testAccIamResourceGroupDatasourceConfigList = `
+resource "ovh_iam_resource_group" "resource_group_1" {
+	name        = "%s"
+	resources   = ["%s"]
+}
+
+resource "ovh_iam_resource_group" "resource_group_2" {
+	name        = "%s"
+	resources   = ["%s", "%s"]
+}
+
+data "ovh_iam_resource_group" "data_resource_group_1" {
+	id = ovh_iam_resource_group.resource_group_1.id
+}
+
+
+data "ovh_iam_resource_groups" "resource_groups" {}
+
+output "keys_present" {
+	value = tostring(
+		contains(data.ovh_iam_resource_group.resource_groups.resource_groups, ovh_iam_resource_group.resource_group_1.id) &&
+		contains(data.ovh_iam_resource_group.resource_groups.resource_groups, ovh_iam_resource_group.resource_group_2.id)
+	)
+}
+`

ovh/data_iam_resourcegroup.go

@@ -0,0 +1,80 @@
+package ovh
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func dataSourceIamResourceGroup() *schema.Resource {
+	return &schema.Resource{
+		Schema: map[string]*schema.Schema{
+			"id": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+			"name": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"resources": {
+				Type:     schema.TypeSet,
+				Computed: true,
+				Elem: &schema.Schema{
+					Type: schema.TypeString,
+				},
+			},
+			"owner": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"created_at": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"updated_at": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"read_only": {
+				Type:     schema.TypeBool,
+				Computed: true,
+			},
+			"urn": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+		},
+		ReadContext: datasourceIamResourceGroupRead,
+	}
+}
+
+func datasourceIamResourceGroupRead(ctx context.Context, d *schema.ResourceData, meta any) diag.Diagnostics {
+	config := meta.(*Config)
+	id := d.Get("id").(string)
+
+	var pol IamResourceGroup
+	err := config.OVHClient.GetWithContext(ctx, fmt.Sprintf("/v2/iam/resourceGroup/%s?details=true", id), &pol)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	d.SetId(id)
+
+	var urns []string
+	for _, r := range pol.Resources {
+		urns = append(urns, r.URN)
+	}
+
+	d.Set("resources", urns)
+	d.Set("name", pol.Name)
+	d.Set("owner", pol.Owner)
+	d.Set("created_at", pol.CreatedAt)
+	d.Set("updated_at", pol.UpdatedAt)
+	d.Set("read_only", pol.ReadOnly)
+	d.Set("urn", pol.URN)
+
+	return nil
+}

ovh/data_iam_resourcegroups.go

@@ -0,0 +1,41 @@
+package ovh
+
+import (
+	"context"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/ovh/terraform-provider-ovh/ovh/helpers/hashcode"
+)
+
+func dataSourceIamResourceGroups() *schema.Resource {
+	return &schema.Resource{
+		Schema: map[string]*schema.Schema{
+			"resource_groups": {
+				Type:     schema.TypeSet,
+				Elem:     &schema.Schema{Type: schema.TypeString},
+				Computed: true,
+			},
+		},
+		ReadContext: datasourceIamResourceGroupsRead,
+	}
+}
+
+func datasourceIamResourceGroupsRead(ctx context.Context, d *schema.ResourceData, meta any) diag.Diagnostics {
+	config := meta.(*Config)
+
+	var groups []IamResourceGroup
+	err := config.OVHClient.GetWithContext(ctx, "/v2/iam/resourceGroup?details=true", &groups)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	var grpsId []string
+	for _, grp := range groups {
+		grpsId = append(grpsId, grp.ID)
+	}
+
+	d.SetId(hashcode.Strings(grpsId))
+	d.Set("resource_groups", grpsId)
+	return nil
+}

ovh/import_iam_resource_group_test.go

@@ -0,0 +1,43 @@
+package ovh
+
+import (
+	"fmt"
+	"os"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+)
+
+func TestAccIamResourceGroup_importBasic(t *testing.T) {
+	resourceGroupName1 := acctest.RandomWithPrefix(test_prefix)
+
+	resourceUrn := "urn:v1:eu:resource:vps:" + os.Getenv("OVH_VPS")
+
+	config := fmt.Sprintf(
+		`resource "ovh_iam_resource_group" "resource_group_1" {
+			name        = "%s"
+			resources   = ["%s"]
+		}		
+		`,
+		resourceGroupName1,
+		resourceUrn,
+	)
+
+	resource.Test(t, resource.TestCase{
+		PreCheck: func() {
+			testAccPreCheckIamResourceGroup(t)
+		},
+		Providers: testAccProviders,
+		Steps: []resource.TestStep{
+			{
+				Config: config,
+			},
+			{
+				ResourceName:      "ovh_iam_resource_group.resource_group_1",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
+		},
+	})
+}

ovh/provider.go

@@ -112,6 +112,8 @@ func Provider() *schema.Provider {
 			"ovh_iam_policy":                                          dataSourceIamPolicy(),
 			"ovh_iam_reference_actions":                               dataSourceIamReferenceActions(),
 			"ovh_iam_reference_resource_type":                         dataSourceIamReferenceResourceType(),
+			"ovh_iam_resource_group":                                  dataSourceIamResourceGroup(),
+			"ovh_iam_resource_groups":                                 dataSourceIamResourceGroups(),
 			"ovh_ip_service":                                          dataSourceIpService(),
 			"ovh_iploadbalancing":                                     dataSourceIpLoadbalancing(),
 			"ovh_iploadbalancing_vrack_network":                       dataSourceIpLoadbalancingVrackNetwork(),
@@ -190,6 +192,7 @@ func Provider() *schema.Provider {
 			"ovh_hosting_privatedatabase_user_grant":                      resourceHostingPrivateDatabaseUserGrant(),
 			"ovh_hosting_privatedatabase_whitelist":                       resourceHostingPrivateDatabaseWhitelist(),
 			"ovh_iam_policy":                                              resourceIamPolicy(),
+			"ovh_iam_resource_group":                                      resourceIamResourceGroup(),
 			"ovh_ip_reverse":                                              resourceIpReverse(),
 			"ovh_ip_service":                                              resourceIpService(),
 			"ovh_iploadbalancing":                                         resourceIpLoadbalancing(),

ovh/provider_test.go

@@ -357,3 +357,9 @@ func testAccPreCheckWorkflowBackup(t *testing.T) {
 func testAccPreCheckDedicatedServerNetworking(t *testing.T) {
 	checkEnvOrSkip(t, "TEST_DEDICATED_SERVER_NETWORKING")
 }
+
+func testAccPreCheckIamResourceGroup(t *testing.T) {
+	testAccPreCheckCredentials(t)
+	checkEnvOrSkip(t, "OVH_VRACK_SERVICE_TEST")
+	checkEnvOrSkip(t, "OVH_VPS")
+}