Add R82 resources

checkpoint_management_vsx_provisioning_tool checkpoint_management_outbound_inspection_certificate checkpoint_management_add_custom_trusted_ca_certificate checkpoint_management_delete_custom_trusted_ca_certificate checkpoint_management_run_trusted_ca_update checkpoint_management_set_gateway_global_use checkpoint_management_set_https_advanced_settings checkpoint_management_custom_trusted_ca_certificate checkpoint_management_outbound_inspection_certificate checkpoint_management_gateway_global_use checkpoint_management_https_advanced_settings checkpoint_management_gateway_capabilities
CheckPointSW · Sep 29, 2024 · 15099ea · 15099ea
1 parent 01c054d
commit 15099ea
Show file tree

Hide file tree

Showing 29 changed files with 4,866 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,6 +1,13 @@
 ## 2.8.0
 
 FEATURES
+* **New Resource:** `checkpoint_management_vsx_provisioning_tool`
+* **New Resource:** `checkpoint_management_outbound_inspection_certificate`
+* **New Resource:** `checkpoint_management_add_custom_trusted_ca_certificate`
+* **New Resource:** `checkpoint_management_delete_custom_trusted_ca_certificate`
+* **New Resource:** `checkpoint_management_run_trusted_ca_update`
+* **New Resource:** `checkpoint_management_set_gateway_global_use`
+* **New Resource:** `checkpoint_management_set_https_advanced_settings`
 * **New Resource:** `checkpoint_management_delete_infinity_idp_object`
 * **New Resource:** `checkpoint_management_delete_infinity_idp`
 * **New Resource:** `checkpoint_management_mobile_access_section`
@@ -32,6 +39,11 @@ FEATURES
 * **New Resource:** `checkpoint_management_data_type_group`
 * **New Resource:** `checkpoint_management_data_type_traditional_group`
 * **New Resource:** `checkpoint_management_data_type_compound_group`
+* **New Data Source:** `checkpoint_management_custom_trusted_ca_certificate`
+* **New Data Source:** `checkpoint_management_outbound_inspection_certificate`
+* **New Data Source:** `checkpoint_management_gateway_global_use`
+* **New Data Source:** `checkpoint_management_https_advanced_settings`
+* **New Data Source:** `checkpoint_management_gateway_capabilities`
 * **New Data Source:** `checkpoint_management_infinity_idp_object`
 * **New Data Source:** `checkpoint_management_infinity_idp`
 * **New Data Source:** `checkpoint_management_mobile_access_section`

diff --git a/checkpoint/data_source_checkpoint_management_custom_trusted_ca_certificate.go b/checkpoint/data_source_checkpoint_management_custom_trusted_ca_certificate.go
@@ -0,0 +1,196 @@
+package checkpoint
+
+import (
+	"fmt"
+	checkpoint "github.com/CheckPointSW/cp-mgmt-api-go-sdk/APIFiles"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	"log"
+)
+
+func dataSourceManagementCustomTrustedCaCertificate() *schema.Resource {
+	return &schema.Resource{
+
+		Read: dataSourceManagementCustomTrustedCaCertificateRead,
+
+		Schema: map[string]*schema.Schema{
+			"uid": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Certificate Object uid.",
+			},
+			"name": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Certificate Object name.",
+			},
+			"added_by": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "By whom the certificate was added.",
+			},
+			"base64_certificate": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "Certificate file encoded in base64.",
+			},
+			"issued_by": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "Trusted CA certificate issued by.",
+			},
+			"issued_to": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "Trusted CA certificate issued to.",
+			},
+			"tags": {
+				Type:        schema.TypeSet,
+				Computed:    true,
+				Description: "Collection of tag identifiers.",
+				Elem: &schema.Schema{
+					Type: schema.TypeString,
+				},
+			},
+			"valid_from": {
+				Type:        schema.TypeList,
+				Computed:    true,
+				Description: "Trusted CA certificate valid from date.",
+				MaxItems:    1,
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						"iso_8601": {
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "Date and time represented in international ISO 8601 format",
+						},
+						"posix": {
+							Type:        schema.TypeInt,
+							Computed:    true,
+							Description: "Number of milliseconds that have elapsed since 00:00:00, 1 January 1970.\nTrusted CA certificate valid from date.",
+						},
+					},
+				},
+			},
+			"valid_to": {
+				Type:        schema.TypeList,
+				Computed:    true,
+				Description: "Trusted CA certificate valid to date.",
+				MaxItems:    1,
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						"iso_8601": {
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "Date and time represented in international ISO 8601 format",
+						},
+						"posix": {
+							Type:        schema.TypeInt,
+							Computed:    true,
+							Description: "Number of milliseconds that have elapsed since 00:00:00, 1 January 1970.\nTrusted CA certificate valid from date.",
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func dataSourceManagementCustomTrustedCaCertificateRead(d *schema.ResourceData, m interface{}) error {
+
+	client := m.(*checkpoint.ApiClient)
+
+	payload := make(map[string]interface{})
+
+	name := d.Get("name").(string)
+	uid := d.Get("uid").(string)
+
+	if name != "" {
+		payload["name"] = name
+	} else if uid != "" {
+		payload["uid"] = uid
+	}
+
+	CustomTrustedCaCertificateObjRes, err := client.ApiCall("show-custom-trusted-ca-certificate", payload, client.GetSessionID(), true, client.IsProxyUsed())
+
+	if err != nil {
+		return fmt.Errorf(err.Error())
+	}
+	if !CustomTrustedCaCertificateObjRes.Success {
+		// Handle delete resource from other clients
+		if objectNotFound(CustomTrustedCaCertificateObjRes.GetData()["code"].(string)) {
+			d.SetId("")
+			return nil
+		}
+		return fmt.Errorf(CustomTrustedCaCertificateObjRes.ErrorMsg)
+	}
+
+	customTrustedCaCertificateObj := CustomTrustedCaCertificateObjRes.GetData()
+
+	log.Println("Read CP Trusted CA Certificate Object - Show JSON = ", customTrustedCaCertificateObj)
+
+	if v := customTrustedCaCertificateObj["uid"]; v != nil {
+		_ = d.Set("uid", v)
+		d.SetId(v.(string))
+	}
+
+	if v := customTrustedCaCertificateObj["name"]; v != nil {
+		_ = d.Set("name", v)
+	}
+	if v := customTrustedCaCertificateObj["added-by"]; v != nil {
+		_ = d.Set("added_by", v)
+	}
+	if v := customTrustedCaCertificateObj["base64-certificate"]; v != nil {
+		_ = d.Set("base64_certificate", cleanseCertificate(v.(string)))
+	}
+	if v := customTrustedCaCertificateObj["issued-by"]; v != nil {
+		_ = d.Set("issued_by", v)
+	}
+	if v := customTrustedCaCertificateObj["issued-to"]; v != nil {
+		_ = d.Set("issued_to", v)
+	}
+	if customTrustedCaCertificateObj["tags"] != nil {
+		tagsJson, ok := customTrustedCaCertificateObj["tags"].([]interface{})
+		if ok {
+			tagsIds := make([]string, 0)
+			if len(tagsJson) > 0 {
+				for _, tags := range tagsJson {
+					tags := tags.(map[string]interface{})
+					tagsIds = append(tagsIds, tags["name"].(string))
+				}
+			}
+			_ = d.Set("tags", tagsIds)
+		}
+	} else {
+		_ = d.Set("tags", nil)
+	}
+
+	if v := customTrustedCaCertificateObj["valid-from"]; v != nil {
+
+		localMap := v.(map[string]interface{})
+
+		validFrom := make(map[string]interface{})
+
+		if v := localMap["iso-8601"]; v != nil {
+			validFrom["iso_8601"] = v
+		}
+		if v := localMap["posix"]; v != nil {
+			validFrom["posix"] = v
+		}
+		_ = d.Set("valid_from", []interface{}{validFrom})
+	}
+	if v := customTrustedCaCertificateObj["valid-to"]; v != nil {
+
+		localMap := v.(map[string]interface{})
+
+		validTo := make(map[string]interface{})
+
+		if v := localMap["iso-8601"]; v != nil {
+			validTo["iso_8601"] = v
+		}
+		if v := localMap["posix"]; v != nil {
+			validTo["posix"] = v
+		}
+		_ = d.Set("valid_to", []interface{}{validTo})
+	}
+	return nil
+}