ci: support prepare test

Author: shanye997

.gitignore

@@ -18,6 +18,7 @@ TestRecordImport
 TestRecordTfer
 terraform.tfstate
 terraform.tfstate.backup
+**/terraform.tfvars
 quickstarts/**/header.md
 quickstarts/**/footer.md
 quickstarts/**/plan.tftest.hcl

quickstarts/VPC/201-use-case-ecr-grant/main.tf

@@ -0,0 +1,26 @@
+# 指定VPC所在地域
+provider "alicloud" {
+  region = "cn-hangzhou"
+}
+
+# 指定VPC的ID
+variable "vpc_id" {
+  default = "vpc-xxx" # 修改为VPC的实际ID
+}
+
+# 指定对方账号的UID 
+variable "cen_owner_uid" {
+  default = "18xxx" # 修改为对方账号的UID
+}
+
+# 指定对方账号中CEN的ID
+variable "cen_id" {
+  default = "cen-xxx" # 修改为对方账号中CEN的ID
+}
+
+# 将VPC授权给对方账号中的CEN
+resource "alicloud_cen_instance_grant" "child_account" {
+  child_instance_id = var.vpc_id
+  cen_owner_id      = var.cen_owner_uid
+  cen_id            = var.cen_id
+}

quickstarts/VPC/201-use-case-ecr-grant/prepare/main.tf

@@ -0,0 +1,37 @@
+
+# 创建 VPC
+provider "alicloud" {
+  region = "cn-hangzhou"
+}
+
+resource "alicloud_vpc" "default" {
+}
+
+output "vpc_id" {
+  value = alicloud_vpc.default.id
+}
+
+# 创建 CEN
+variable "another_uid" {
+  default = "1344xxxx"
+
+}
+provider "alicloud" {
+  assume_role {
+    role_arn = "acs:ram::${var.another_uid}:role/terraform-example-assume-role"
+  }
+  alias = "assumerole"
+}
+
+resource "alicloud_cen_instance" "default" {
+  provider          = alicloud.assumerole
+  cen_instance_name = "tf_example"
+}
+
+output "cen_owner_uid" {
+  value = var.another_uid
+}
+
+output "cen_id" {
+  value = alicloud_cen_instance.default.id
+}

quickstarts/VPC/201-use-case-ecr-grant/provider.tf

@@ -0,0 +1,7 @@
+terraform {
+  required_providers {
+    alicloud = {
+      source = "aliyun/alicloud"
+    }
+  }
+}

quickstarts/VPC/201-use-case-vpc/main.tf

@@ -0,0 +1,15 @@
+# 指定创建VPC的地域
+provider "alicloud" {
+  region = "cn-hangzhou"
+}
+
+# 指定VPC的ID
+variable "vpc_id" {
+  default = "vpc-xxx" # 修改为VPC的实际ID
+}
+
+# 在VPC中创建附加网段
+resource "alicloud_vpc_ipv4_cidr_block" "test_secondary_cidr_block" {
+  vpc_id               = var.vpc_id
+  secondary_cidr_block = "192.168.0.0/16" # 指定附加网段
+}

quickstarts/VPC/201-use-case-vpc/prepare/main.tf

@@ -0,0 +1,7 @@
+# 创建 VPC
+resource "alicloud_vpc" "default" {
+}
+
+output "vpc_id" {
+  value = alicloud_vpc.default.id
+}

scripts/terraform-test.sh

@@ -2,10 +2,42 @@
 
 f=$1
 success=true
+exitCode=0
 
 f=$(echo $f | xargs echo -n)
 
-exitCode=0
+# set up prerequisite resources
+varfile=""
+if [ -d "$f/prepare" ]; then
+  echo ""
+  echo "====> Found prepare directory. Creating prerequisite resources in $f/prepare"
+  terraform -chdir=$f/prepare init -upgrade >/dev/null
+  if [[ $? -ne 0 ]]; then
+    success=false
+    exitCode=1
+    echo -e "\033[31m[ERROR]\033[0m: running terraform init in prepare directory failed."
+    bash scripts/generate-test-record.sh $f "Prepare Init: running terraform init in prepare directory failed."
+  else
+    terraform -chdir=$f/prepare apply -auto-approve >/dev/null
+    if [[ $? -ne 0 ]]; then
+      success=false
+      exitCode=3
+      echo -e "\033[31m[ERROR]\033[0m: running terraform apply in prepare directory failed."
+      bash scripts/generate-test-record.sh $f "Prepare Apply: running terraform apply in prepare directory failed."
+    else
+      echo -e "\033[32m - prepare apply: success\033[0m"
+      terraform -chdir=$f/prepare output > $f/prepare/terraform.tfvars
+      varfile="-var-file=./prepare/terraform.tfvars"
+    fi
+  fi
+fi
+if [[ $success == "false" ]]; then
+  rm -rf $f/prepare/.terraform
+  rm -rf $f/prepare/.terraform.lock.hcl
+  exit $exitCode
+fi
+
+
 echo ""
 echo "====> Terraform testing in" $f
 terraform -chdir=$f init -upgrade >/dev/null
@@ -17,7 +49,7 @@ if [[ $? -ne 0 ]]; then
 else
   echo ""
   echo " ----> Plan Testing"
-  terraform -chdir=$f plan >/dev/null
+  terraform -chdir=$f plan $varfile >/dev/null
   if [[ $? -ne 0 ]]; then
     success=false
     exitCode=2
@@ -27,7 +59,7 @@ else
     echo -e "\033[32m - plan check: success\033[0m"
     echo ""
     echo " ----> Apply Testing"
-    terraform -chdir=$f apply -auto-approve >/dev/null 
+    terraform -chdir=$f apply -auto-approve $varfile >/dev/null 
     if [[ $? -ne 0 ]]; then
       success=false
       exitCode=3
@@ -37,7 +69,7 @@ else
         echo -e "\033[32m - apply check: success\033[0m"
         echo ""
         echo -e " ----> Apply Diff Checking\n"
-        terraform -chdir=$f plan -detailed-exitcode
+        terraform -chdir=$f plan $varfile -detailed-exitcode
         if [[ $? -ne 0 ]]; then
           success=false
           exitCode=4
@@ -53,7 +85,7 @@ else
     fi
     echo ""
     echo " ----> Destroying"
-    terraform -chdir=$f destroy -auto-approve >/dev/null 
+    terraform -chdir=$f destroy $varfile -auto-approve >/dev/null 
     if [[ $? -ne 0 ]]; then
       success=false
       if [[ $exitCode -eq 0 ]]; then
@@ -66,14 +98,31 @@ else
     fi
   fi
 
-  if [[ $success == "true" ]]; then
-    bash scripts/generate-test-record.sh $f
-  fi
-
   rm -rf $f/.terraform
   rm -rf $f/.terraform.lock.hcl
 fi
 
+# destroy prerequisite resources
+if [ -d "$f/prepare" ]; then
+  echo ""
+  echo "====> Destroying prerequisite resources in $f/prepare"
+  terraform -chdir=$f/prepare destroy -auto-approve >/dev/null
+  if [[ $? -ne 0 ]]; then
+    success=false
+    exitCode=5
+    echo -e "\033[31m[ERROR]\033[0m: running terraform destroy in prepare directory failed."
+    bash scripts/generate-test-record.sh $f "Prepare Destroy: running terraform destroy in prepare directory failed."
+  else
+    echo -e "\033[32m - prepare destroy: success\033[0m"
+  fi
+  rm -rf $f/prepare/.terraform
+  rm -rf $f/prepare/.terraform.lock.hcl
+fi
+
+
+if [[ $success == "true" ]]; then
+  bash scripts/generate-test-record.sh $f
+fi
 echo -e "\n"
 
 exit $exitCode