v0.3.0 release (increase Purity version for cbs_array_azure)

Author: ccannon424

.gitignore

@@ -18,3 +18,8 @@
 .terraform
 *.tfstate
 *.tfstate.*
+**/.terraform.lock.hcl
+
+/.build/
+**/.vscode/
+

CHANGELOG.md

@@ -1,3 +1,7 @@
+## 0.3.0 (April 13, 2021)
+
+* Update Purity version of cbs_array_azure from 6.1.0 to 6.1.4
+
 ## 0.2.0 (March 9, 2021)
 
 * Release of CBS on Azure support through the cbs_array_azure resource

Makefile

@@ -1,10 +1,36 @@
-default: install
+DEV_PKGDIR := $(HOME)/.terraform.d/plugins/terraform.purestorage.com/flasharray/cbs/
+DEV_GOBIN := $(DEV_PKGDIR)/99.99/linux_amd64/
+
+default: build
 
 build:
 	go build
 
-install:
-	go install
-
 testacc:
 	TF_ACC=1 go test ./cbs -v -timeout 120m
+
+install-dev-mock:
+	GOBIN=$(DEV_GOBIN) go install --tags mock
+
+install-dev:
+	GOBIN=$(DEV_GOBIN) go install
+
+install-dev-clean:
+	rm -rvf $(DEV_PKGDIR)
+
+test-acc-mock:
+	set -a; . testing/mock.env; go test --tags mock,mock_trace ./cbs -v -timeout 120m
+
+test-vet:
+	go vet ./cbs
+	go vet -tags mock ./cbs
+
+# Tests that should run on each pull request
+test-pull-request: test-vet test-acc-mock
+
+tidy:
+	go fmt ./cbs
+	go mod tidy -v
+	go fix ./cbs
+	go clean ./cbs
+	go clean --tags mock ./cbs

cbs/cbs_service.go

@@ -19,34 +19,37 @@
 package cbs
 
 import (
+	"context"
 	"fmt"
 
 	"github.com/Azure/azure-sdk-for-go/services/graphrbac/1.6/graphrbac"
 	"github.com/Azure/azure-sdk-for-go/services/resources/mgmt/2019-07-01/managedapplications"
-	"github.com/Azure/go-autorest/autorest"
 
 	"github.com/aws/aws-sdk-go/aws"
-	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/aws/request"
 	"github.com/aws/aws-sdk-go/service/cloudformation"
 
-	"github.com/hashicorp/go-azure-helpers/authentication"
-	"github.com/hashicorp/go-azure-helpers/sender"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
 )
 
-type CbsService struct {
-	CloudFormation *cloudformation.CloudFormation
-	AzureClient    *AzureClient
+type cloudformationAPI interface {
+	CreateStack(input *cloudformation.CreateStackInput) (*cloudformation.CreateStackOutput, error)
+	DescribeStacks(input *cloudformation.DescribeStacksInput) (*cloudformation.DescribeStacksOutput, error)
+	DeleteStack(input *cloudformation.DeleteStackInput) (*cloudformation.DeleteStackOutput, error)
+	WaitUntilStackCreateCompleteWithContext(ctx aws.Context, input *cloudformation.DescribeStacksInput, opts ...request.WaiterOption) error
+	WaitUntilStackDeleteCompleteWithContext(ctx aws.Context, input *cloudformation.DescribeStacksInput, opts ...request.WaiterOption) error
 }
 
-type AzureClient struct {
-	ApplicationsClient *managedapplications.ApplicationsClient
-	GroupsClient       *graphrbac.GroupsClient
+type CbsService struct {
+	CloudFormation cloudformationAPI
+	AzureClient    AzureClientAPI
+	awsRegionStr   string
+	azureConfig    azureUserConfig
 }
 
-func (m *CbsService) CloudFormationService() (*cloudformation.CloudFormation, diag.Diagnostics) {
+func (m *CbsService) CloudFormationService() (cloudformationAPI, diag.Diagnostics) {
 	if m.CloudFormation == nil {
-		cftSvc, diags := buildSession(awsRegionStr)
+		cftSvc, diags := buildAWSSession(m.awsRegionStr)
 		if diags.HasError() {
 			return nil, diags
 		}
@@ -56,9 +59,9 @@ func (m *CbsService) CloudFormationService() (*cloudformation.CloudFormation, di
 	return m.CloudFormation, nil
 }
 
-func (m *CbsService) AzureClientService() (*AzureClient, diag.Diagnostics) {
+func (m *CbsService) AzureClientService() (AzureClientAPI, diag.Diagnostics) {
 	if m.AzureClient == nil {
-		azureClient, diags := buildAzureClient(azureBuilder)
+		azureClient, diags := buildAzureClient(m.azureConfig)
 		if diags.HasError() {
 			return nil, diags
 		}
@@ -68,67 +71,28 @@ func (m *CbsService) AzureClientService() (*AzureClient, diag.Diagnostics) {
 	return m.AzureClient, nil
 }
 
-func buildSession(region string) (*cloudformation.CloudFormation, diag.Diagnostics) {
+func buildAWSSessionPreCheck(region string) diag.Diagnostics {
 	var diags diag.Diagnostics
 	if region == "" {
 		diags = append(diags, diag.Diagnostic{
 			Severity: diag.Error,
 			Summary: fmt.Sprintf("No AWS region specified. The AWS region must be provided either in "+
 				"the provider configuration block or with the %s environment variable.", awsRegionVar),
 		})
-		return nil, diags
+		return diags
 	}
-	sess, err := session.NewSession(&aws.Config{
-		Region: aws.String(region)},
-	)
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
-
-	cftSvc := cloudformation.New(sess)
-	return cftSvc, nil
+	return nil
 }
 
-func buildAzureClient(builder *authentication.Builder) (*AzureClient, diag.Diagnostics) {
-	var azureClient AzureClient
-	config, err := builder.Build()
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
-
-	env, err := authentication.DetermineEnvironment(config.Environment)
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
-
-	// This indicates that a 429 response should not be included as a retry attempt
-	// so that we continue to retry until it succeeds. Set this behavior to keep
-	// consistent with azurerm provider.
-	autorest.Count429AsRetry = false
-
-	oauthConfig, err := config.BuildOAuthConfig(env.ActiveDirectoryEndpoint)
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
-	sender := sender.BuildSender("cbs")
-	auth, err := config.GetAuthorizationToken(sender, oauthConfig, env.TokenAudience)
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
-	graphAuth, err := config.GetAuthorizationToken(sender, oauthConfig, env.GraphEndpoint)
-	if err != nil {
-		return nil, diag.FromErr(err)
-	}
+type AzureClientAPI interface {
+	SubscriptionID() string
+	groupsListComplete(ctx context.Context, filter string) (*[]graphrbac.ADGroup, error)
+	appsCreateOrUpdate(ctx context.Context, resourceGroupName string, applicationName string, parameters managedapplications.Application) error
+	appsGet(ctx context.Context, resourceGroupName string, applicationName string) (managedapplications.Application, error)
+	appsDelete(ctx context.Context, resourceGroupName string, applicationName string) error
+}
 
-	// Create applications client
-	client := managedapplications.NewApplicationsClient(config.SubscriptionID)
-	client.SubscriptionID = config.SubscriptionID
-	client.Client.Authorizer = auth
-	// Create groups client
-	groupClient := graphrbac.NewGroupsClient(config.TenantID)
-	groupClient.Client.Authorizer = graphAuth
-
-	azureClient.ApplicationsClient = &client
-	azureClient.GroupsClient = &groupClient
-	return &azureClient, nil
+type AzureClient struct {
+	ApplicationsClient *managedapplications.ApplicationsClient
+	GroupsClient       *graphrbac.GroupsClient
 }

cbs/cloud_services.go

@@ -0,0 +1,159 @@
+// +build !mock
+
+/*
+
+	Copyright 2021, Pure Storage Inc.
+
+	Licensed under the Apache License, Version 2.0 (the "License");
+	you may not use this file except in compliance with the License.
+	You may obtain a copy of the License at
+
+		http://www.apache.org/licenses/LICENSE-2.0
+
+	Unless required by applicable law or agreed to in writing, software
+	distributed under the License is distributed on an "AS IS" BASIS,
+	WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+	See the License for the specific language governing permissions and
+	limitations under the License.
+
+
+	This file contains wrappers for "real" cloud service calls, as opposed to alternative
+	implementations that are mocked.  Some of these wrappers also do a small amount of
+	"flattening" in order to simplify some of the cloud APIs.  Simplifications includes
+	reducing the number of objects, and putting multiple calls together.  This helps serve
+	as a single file for tracking all cloud accesses, and it also makes it clearer what
+	interfaces need to be mocked.
+
+*/
+
+package cbs
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/Azure/azure-sdk-for-go/profiles/latest/resources/mgmt/managedapplications"
+	"github.com/Azure/azure-sdk-for-go/services/graphrbac/1.6/graphrbac"
+	"github.com/Azure/go-autorest/autorest"
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/cloudformation"
+	"github.com/hashicorp/go-azure-helpers/authentication"
+	"github.com/hashicorp/go-azure-helpers/sender"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+)
+
+// Aws things:
+
+func buildAWSSession(region string) (*cloudformation.CloudFormation, diag.Diagnostics) {
+	var diags = buildAWSSessionPreCheck(region)
+	if diags != nil {
+		return nil, diags
+	}
+	sess, err := session.NewSession(&aws.Config{
+		Region: aws.String(region)},
+	)
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+
+	cftSvc := cloudformation.New(sess)
+	return cftSvc, nil
+}
+
+// Azure things:
+
+func buildAzureClient(userConfig azureUserConfig) (AzureClientAPI, diag.Diagnostics) {
+
+	builder := &authentication.Builder{
+		SubscriptionID:           userConfig.SubscriptionID,
+		ClientID:                 userConfig.ClientID,
+		ClientSecret:             userConfig.ClientSecret,
+		TenantID:                 userConfig.TenantID,
+		Environment:              azureEnvironment,
+		SupportsClientSecretAuth: true,
+		SupportsAzureCliToken:    true,
+	}
+
+	var azureClient AzureClient
+	config, err := builder.Build()
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+
+	env, err := authentication.DetermineEnvironment(config.Environment)
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+
+	// This indicates that a 429 response should not be included as a retry attempt
+	// so that we continue to retry until it succeeds. Set this behavior to keep
+	// consistent with azurerm provider.
+	autorest.Count429AsRetry = false
+
+	oauthConfig, err := config.BuildOAuthConfig(env.ActiveDirectoryEndpoint)
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+	sender := sender.BuildSender("cbs")
+	auth, err := config.GetAuthorizationToken(sender, oauthConfig, env.TokenAudience)
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+	graphAuth, err := config.GetAuthorizationToken(sender, oauthConfig, env.GraphEndpoint)
+	if err != nil {
+		return nil, diag.FromErr(err)
+	}
+
+	// Create applications client
+	applicationsClient := managedapplications.NewApplicationsClient(config.SubscriptionID)
+	applicationsClient.SubscriptionID = config.SubscriptionID
+	applicationsClient.Client.Authorizer = auth
+	// Create groups client
+	groupClient := graphrbac.NewGroupsClient(config.TenantID)
+	groupClient.Client.Authorizer = graphAuth
+
+	azureClient.ApplicationsClient = &applicationsClient
+	azureClient.GroupsClient = &groupClient
+	return &azureClient, nil
+}
+
+func (client *AzureClient) SubscriptionID() string {
+	return client.ApplicationsClient.SubscriptionID
+}
+
+func (client *AzureClient) groupsListComplete(ctx context.Context, filter string) (*[]graphrbac.ADGroup, error) {
+	resp, err := client.GroupsClient.ListComplete(ctx, filter)
+	if err != nil {
+		return nil, err
+	}
+	return resp.Response().Value, nil
+}
+
+func (azureClient *AzureClient) appsCreateOrUpdate(ctx context.Context, resourceGroupName string, applicationName string, parameters managedapplications.Application) error {
+	future, err := azureClient.ApplicationsClient.CreateOrUpdate(ctx, resourceGroupName, applicationName, parameters)
+	if err != nil {
+		return fmt.Errorf("failed to create Managed Application %q (Resource Group %q): %+v", applicationName, resourceGroupName, err)
+	}
+	err = future.WaitForCompletionRef(ctx, azureClient.ApplicationsClient.Client)
+	if err != nil {
+		return fmt.Errorf("failed to wait for creation of Managed Application %q (Resource Group %q): %+v", applicationName, resourceGroupName, err)
+	}
+	return nil
+}
+
+func (azureClient *AzureClient) appsGet(ctx context.Context, resourceGroupName string, applicationName string) (managedapplications.Application, error) {
+	return azureClient.ApplicationsClient.Get(ctx, resourceGroupName, applicationName)
+}
+
+func (azureClient *AzureClient) appsDelete(ctx context.Context, resourceGroupName string, applicationName string) error {
+	future, err := azureClient.ApplicationsClient.Delete(ctx, resourceGroupName, applicationName)
+	if err != nil {
+		return fmt.Errorf("failed to delete Managed Application %q (Resource Group %q): %+v", applicationName, resourceGroupName, err)
+	}
+	err = future.WaitForCompletionRef(ctx, azureClient.ApplicationsClient.Client)
+	if err != nil {
+		return fmt.Errorf("failed to wait for deleting Managed Application (Managed Application Name %q / Resource Group %q): %+v", applicationName, resourceGroupName, err)
+	}
+	return nil
+}