Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

ENG-14612: Implement cyral_policy_wizards resource #593

Merged
merged 8 commits into from
Dec 18, 2024
Merged
Show file tree
Hide file tree
Changes from 7 commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,6 @@ func (p *packageSchema) Schemas() []*core.SchemaDescriptor {
Type: core.DataSourceSchemaType,
Schema: dataSourceSchema,
},

{
Name: resourceName,
Type: core.ResourceSchemaType,
Expand Down
5 changes: 5 additions & 0 deletions cyral/internal/policy/wizard/constants.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
package wizard

const (
dataSourceName = "cyral_policy_wizards"
)
64 changes: 64 additions & 0 deletions cyral/internal/policy/wizard/datasource.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,64 @@
package wizard

import (
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"

"github.com/cyralinc/terraform-provider-cyral/cyral/core"
"github.com/cyralinc/terraform-provider-cyral/cyral/core/types/resourcetype"
)

var dsContextHandler = core.ContextHandler{
ResourceName: dataSourceName,
ResourceType: resourcetype.DataSource,
Read: readPolicyWizards,
}

func dataSourceSchema() *schema.Resource {
return &schema.Resource{
Description: "This data source provides information policy wizards",
ReadContext: dsContextHandler.ReadContext,
Schema: map[string]*schema.Schema{
"wizard_id": {
Description: "id of the policy wizard of interest.",
Type: schema.TypeString,
Optional: true,
},
"wizards": {
Description: "Set of supported policy wizards.",
Type: schema.TypeSet,
Computed: true,
Elem: &schema.Resource{
Description: "Information about a policy wizard.",
Schema: map[string]*schema.Schema{
"id": {
Description: "Identifier for the policy wizard, use as the value of wizard_id parameter in the policy set resource.",
Type: schema.TypeString,
Required: true,
},
"name": {
Description: "Name of the policy wizard.",
Type: schema.TypeString,
Computed: true,
},
"description": {
Description: "Description of the policy wizard.",
Type: schema.TypeString,
Computed: true,
},
"tags": {
Description: "Tags associated with the policy wizard.",
Type: schema.TypeList,
Computed: true,
Elem: &schema.Schema{Type: schema.TypeString},
},
"parameter_schema": {
Description: "JSON schema for the policy wizard parameters.",
Type: schema.TypeString,
Computed: true,
},
},
},
},
},
}
}
80 changes: 80 additions & 0 deletions cyral/internal/policy/wizard/datasource_test.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,80 @@
package wizard_test

import (
"testing"

"github.com/cyralinc/terraform-provider-cyral/cyral/provider"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
)

func TestAccPolicyWizardsDataSource(t *testing.T) {
dsName := "data.cyral_policy_wizards.wizard_list"
resource.ParallelTest(t, resource.TestCase{
ProviderFactories: provider.ProviderFactories,
Steps: []resource.TestStep{
{
Config: `
data "cyral_policy_wizards" "wizard_list" {
}
`,
Check: checkAllWizards(dsName),
},
{
Config: `
data "cyral_policy_wizards" "wizard_list" {
wizard_id = "data-firewall"
}
`,
Check: checkOneWizard(dsName, "data-firewall"),
},
{
Config: `
data "cyral_policy_wizards" "wizard_list" {
wizard_id = "XXX"
}
`,
Check: resource.TestCheckResourceAttr(dsName, "wizards.#", "0"),
},
},
})
}

// checkAllWizards ensures that a few well known wizard ids are present in the
// datasource state. It does not attempt to make very exhaustive checks because
// wizard names, descriptions (and even the wizard list) is subject to change.
func checkAllWizards(dsName string) resource.TestCheckFunc {
return resource.ComposeTestCheckFunc(
resource.TestCheckTypeSetElemNestedAttrs(
dsName, "wizards.*",
map[string]string{
"id": "data-firewall",
},
),
resource.TestCheckTypeSetElemNestedAttrs(
dsName, "wizards.*",
map[string]string{
"id": "data-masking",
},
),
resource.TestCheckTypeSetElemNestedAttrs(
dsName, "wizards.*",
map[string]string{
"id": "user-segmentation",
},
),
)
}

// checkOneWizard ensures that the data source state contains only one wizard
// with the given id.
func checkOneWizard(dsName, id string) resource.TestCheckFunc {
return resource.ComposeTestCheckFunc(
resource.TestCheckResourceAttr(dsName, "wizards.#", "1"),
resource.TestCheckTypeSetElemNestedAttrs(
dsName, "wizards.*",
map[string]string{
"id": id,
},
),
)
}
66 changes: 66 additions & 0 deletions cyral/internal/policy/wizard/model.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,66 @@
package wizard

import (
"context"

methods "buf.build/gen/go/cyral/policy/grpc/go/policy/v1/policyv1grpc"
msg "buf.build/gen/go/cyral/policy/protocolbuffers/go/policy/v1"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"google.golang.org/grpc/codes"
"google.golang.org/grpc/status"

"github.com/cyralinc/terraform-provider-cyral/cyral/client"
)

func readPolicyWizards(ctx context.Context, cl *client.Client, rd *schema.ResourceData) error {
var wizardList []*msg.PolicyWizard

wizId := rd.Get("wizard_id").(string)
grpcClient := methods.NewPolicyWizardServiceClient(cl.GRPCClient())
if wizId != "" {
req := &msg.ReadPolicyWizardRequest{
Id: wizId,
}
resp, err := grpcClient.ReadPolicyWizard(ctx, req)
if err != nil && status.Code(err) != codes.NotFound {
return err
}
if status.Code(err) != codes.NotFound {
wizardList = []*msg.PolicyWizard{resp.GetPolicyWizard()}
}
} else {
req := &msg.ListPolicyWizardsRequest{}
resp, err := grpcClient.ListPolicyWizards(ctx, req)
if err != nil {
return err
}
wizardList = resp.GetPolicyWizards()
}
updateSchema(wizardList, rd)
return nil
}

func wizardToMap(wiz *msg.PolicyWizard) map[string]any {
return map[string]any{
"id": wiz.GetId(),
"name": wiz.GetName(),
"description": wiz.GetDescription(),
"parameter_schema": wiz.GetParameterSchema(),
"tags": func() []any {
tags := make([]any, 0, len(wiz.GetTags()))
for _, t := range wiz.GetTags() {
tags = append(tags, t)
}
return tags
}(),
}
}

func updateSchema(wizards []*msg.PolicyWizard, rd *schema.ResourceData) {
wizardList := make([]any, 0, len(wizards))
for _, wiz := range wizards {
wizardList = append(wizardList, wizardToMap(wiz))
}
rd.Set("wizards", wizardList)
rd.SetId("cyral-wizard-list")
}
24 changes: 24 additions & 0 deletions cyral/internal/policy/wizard/schema_loader.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
package wizard

import "github.com/cyralinc/terraform-provider-cyral/cyral/core"

type packageSchema struct {
}

func (p *packageSchema) Name() string {
return "policyset"
}

func (p *packageSchema) Schemas() []*core.SchemaDescriptor {
return []*core.SchemaDescriptor{
{
Name: dataSourceName,
Type: core.DataSourceSchemaType,
Schema: dataSourceSchema,
},
}
}

func PackageSchema() core.PackageSchema {
return &packageSchema{}
}
2 changes: 0 additions & 2 deletions cyral/provider/provider.go
Original file line number Diff line number Diff line change
Expand Up @@ -180,8 +180,6 @@ func getCredentials(d *schema.ResourceData) (string, string, diag.Diagnostics) {
return clientID, clientSecret, diags
}

var provider = Provider()
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is an unused private variable that causes a linter warning.


var ProviderFactories = map[string]func() (*schema.Provider, error){
"cyral": func() (*schema.Provider, error) {
return Provider(), nil
Expand Down
4 changes: 3 additions & 1 deletion cyral/provider/schema_loader.go
Original file line number Diff line number Diff line change
Expand Up @@ -15,8 +15,9 @@ import (
integration_slack "github.com/cyralinc/terraform-provider-cyral/cyral/internal/integration/slack"
integration_teams "github.com/cyralinc/terraform-provider-cyral/cyral/internal/integration/teams"
"github.com/cyralinc/terraform-provider-cyral/cyral/internal/permission"
policyset "github.com/cyralinc/terraform-provider-cyral/cyral/internal/policy/set"
policyv2 "github.com/cyralinc/terraform-provider-cyral/cyral/internal/policy/v2"
"github.com/cyralinc/terraform-provider-cyral/cyral/internal/policyset"
policywizard "github.com/cyralinc/terraform-provider-cyral/cyral/internal/policy/wizard"
"github.com/cyralinc/terraform-provider-cyral/cyral/internal/regopolicy"
"github.com/cyralinc/terraform-provider-cyral/cyral/internal/repository"
repository_accessgateway "github.com/cyralinc/terraform-provider-cyral/cyral/internal/repository/accessgateway"
Expand Down Expand Up @@ -58,6 +59,7 @@ func packagesSchemas() []core.PackageSchema {
permission.PackageSchema(),
policyv2.PackageSchema(),
policyset.PackageSchema(),
policywizard.PackageSchema(),
regopolicy.PackageSchema(),
repository.PackageSchema(),
repository_accessgateway.PackageSchema(),
Expand Down
36 changes: 36 additions & 0 deletions docs/data-sources/policy_wizards.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
---
# generated by https://github.com/hashicorp/terraform-plugin-docs
page_title: "cyral_policy_wizards Data Source - terraform-provider-cyral"
subcategory: ""
description: |-
This data source provides information policy wizards
---

# cyral_policy_wizards (Data Source)

This data source provides information policy wizards

<!-- schema generated by tfplugindocs -->

## Schema

### Optional

- `wizard_id` (String) id of the policy wizard of interest.

### Read-Only

- `id` (String) The ID of this resource.
- `wizards` (Set of Object) Set of supported policy wizards. (see [below for nested schema](#nestedatt--wizards))

<a id="nestedatt--wizards"></a>

### Nested Schema for `wizards`

Read-Only:

- `description` (String)
- `id` (String)
- `name` (String)
- `parameter_schema` (String)
- `tags` (List of String)
Loading