New resource: azurerm_function_app_connection (#23127)

hashicorp · Sep 19, 2023 · 1a6b770 · 1a6b770
1 parent 3159557
commit 1a6b770
Show file tree

Hide file tree

Showing 5 changed files with 981 additions and 2 deletions.
diff --git a/.github/labeler-issue-triage.yml b/.github/labeler-issue-triage.yml
@@ -25,7 +25,7 @@ service/app-configuration:
   - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_app_configuration((.|\n)*)###'
 
 service/app-service:
-  - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_(app_service_source_control|function_app_|linux_function_app\W+|linux_function_app\W+|linux_function_app_slot\W+|linux_web_app\W+|linux_web_app\W+|linux_web_app_slot\W+|service_plan|source_control_token|web_app_|windows_function_app\W+|windows_function_app\W+|windows_function_app_slot\W+|windows_web_app\W+|windows_web_app\W+|windows_web_app_slot\W+)((.|\n)*)###'
+  - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_(app_service_source_control|function_app_active_slot\W+|function_app_function\W+|function_app_hybrid_connection\W+|linux_function_app\W+|linux_function_app\W+|linux_function_app_slot\W+|linux_web_app\W+|linux_web_app\W+|linux_web_app_slot\W+|service_plan|source_control_token|web_app_|windows_function_app\W+|windows_function_app\W+|windows_function_app_slot\W+|windows_web_app\W+|windows_web_app\W+|windows_web_app_slot\W+)((.|\n)*)###'
 
 service/application-insights:
   - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_application_insights((.|\n)*)###'
@@ -301,7 +301,7 @@ service/service-bus:
   - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_servicebus_((.|\n)*)###'
 
 service/service-connector:
-  - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_(app_service_connection|spring_cloud_connection)((.|\n)*)###'
+  - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_(app_service_connection|function_app_connection|spring_cloud_connection)((.|\n)*)###'
 
 service/service-fabric:
   - '### (|New or )Affected Resource\(s\)\/Data Source\(s\)((.|\n)*)azurerm_service_fabric_cluster((.|\n)*)###'

diff --git a/internal/services/serviceconnector/registration.go b/internal/services/serviceconnector/registration.go
@@ -27,6 +27,7 @@ func (r Registration) Resources() []sdk.Resource {
 	return []sdk.Resource{
 		AppServiceConnectorResource{},
 		SpringCloudConnectorResource{},
+		FunctionAppConnectorResource{},
 	}
 }
 

diff --git a/internal/services/serviceconnector/service_connector_function_app_resource.go b/internal/services/serviceconnector/service_connector_function_app_resource.go
@@ -0,0 +1,301 @@
+package serviceconnector
+
+import (
+	"context"
+	"fmt"
+	"time"
+
+	"github.com/hashicorp/go-azure-helpers/lang/response"
+	"github.com/hashicorp/go-azure-helpers/resourcemanager/commonids"
+	"github.com/hashicorp/go-azure-sdk/resource-manager/servicelinker/2022-05-01/links"
+	"github.com/hashicorp/go-azure-sdk/resource-manager/servicelinker/2022-05-01/servicelinker"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/hashicorp/terraform-provider-azurerm/helpers/azure"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/sdk"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/services/web/validate"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/tf/pluginsdk"
+	"github.com/hashicorp/terraform-provider-azurerm/internal/tf/validation"
+	"github.com/hashicorp/terraform-provider-azurerm/utils"
+)
+
+type FunctionAppConnectorResource struct{}
+
+type FunctionAppConnectorResourceModel struct {
+	Name             string             `tfschema:"name"`
+	FunctionAppId    string             `tfschema:"function_app_id"`
+	TargetResourceId string             `tfschema:"target_resource_id"`
+	ClientType       string             `tfschema:"client_type"`
+	AuthInfo         []AuthInfoModel    `tfschema:"authentication"`
+	VnetSolution     string             `tfschema:"vnet_solution"`
+	SecretStore      []SecretStoreModel `tfschema:"secret_store"`
+}
+
+func (r FunctionAppConnectorResource) Arguments() map[string]*schema.Schema {
+	return map[string]*schema.Schema{
+		"name": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: validation.StringIsNotEmpty,
+		},
+
+		"function_app_id": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: validate.FunctionAppID,
+		},
+
+		"target_resource_id": {
+			Type:         pluginsdk.TypeString,
+			Required:     true,
+			ForceNew:     true,
+			ValidateFunc: azure.ValidateResourceID,
+		},
+
+		"client_type": {
+			Type:     pluginsdk.TypeString,
+			Optional: true,
+			Default:  string(servicelinker.ClientTypeNone),
+			ValidateFunc: validation.StringInSlice([]string{
+				string(servicelinker.ClientTypeDotnet),
+				string(servicelinker.ClientTypeJava),
+				string(servicelinker.ClientTypePython),
+				string(servicelinker.ClientTypeGo),
+				string(servicelinker.ClientTypePhp),
+				string(servicelinker.ClientTypeRuby),
+				string(servicelinker.ClientTypeDjango),
+				string(servicelinker.ClientTypeNodejs),
+				string(servicelinker.ClientTypeSpringBoot),
+			}, false),
+		},
+
+		"secret_store": secretStoreSchema(),
+
+		"vnet_solution": {
+			Type:     pluginsdk.TypeString,
+			Optional: true,
+			ValidateFunc: validation.StringInSlice([]string{
+				string(servicelinker.VNetSolutionTypeServiceEndpoint),
+				string(servicelinker.VNetSolutionTypePrivateLink),
+			}, false),
+		},
+
+		"authentication": authInfoSchema(),
+	}
+}
+
+func (r FunctionAppConnectorResource) Attributes() map[string]*schema.Schema {
+	return map[string]*schema.Schema{}
+}
+
+func (r FunctionAppConnectorResource) ModelObject() interface{} {
+	return &FunctionAppConnectorResourceModel{}
+}
+
+func (r FunctionAppConnectorResource) ResourceType() string {
+	return "azurerm_function_app_connection"
+}
+
+func (r FunctionAppConnectorResource) Create() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			var model FunctionAppConnectorResourceModel
+			if err := metadata.Decode(&model); err != nil {
+				return err
+			}
+
+			client := metadata.Client.ServiceConnector.ServiceLinkerClient
+
+			id := servicelinker.NewScopedLinkerID(model.FunctionAppId, model.Name)
+			existing, err := client.LinkerGet(ctx, id)
+			if err != nil && !response.WasNotFound(existing.HttpResponse) {
+				return fmt.Errorf("checking for presence of existing %s: %+v", id, err)
+			}
+
+			if !response.WasNotFound(existing.HttpResponse) {
+				return metadata.ResourceRequiresImport(r.ResourceType(), id)
+			}
+
+			authInfo, err := expandServiceConnectorAuthInfo(model.AuthInfo)
+			if err != nil {
+				return fmt.Errorf("expanding `authentication`: %+v", err)
+			}
+
+			serviceConnectorProperties := servicelinker.LinkerProperties{
+				AuthInfo: authInfo,
+			}
+
+			if _, err := commonids.ParseStorageAccountID(model.TargetResourceId); err == nil {
+				targetResourceId := model.TargetResourceId + "/blobServices/default"
+				serviceConnectorProperties.TargetService = servicelinker.AzureResource{
+					Id: &targetResourceId,
+				}
+			} else {
+				serviceConnectorProperties.TargetService = servicelinker.AzureResource{
+					Id: &model.TargetResourceId,
+				}
+			}
+
+			if model.SecretStore != nil {
+				secretStore := expandSecretStore(model.SecretStore)
+				serviceConnectorProperties.SecretStore = secretStore
+			}
+
+			if model.ClientType != "" {
+				clientType := servicelinker.ClientType(model.ClientType)
+				serviceConnectorProperties.ClientType = &clientType
+			}
+
+			if model.VnetSolution != "" {
+				vNetSolutionType := servicelinker.VNetSolutionType(model.VnetSolution)
+				vNetSolution := servicelinker.VNetSolution{
+					Type: &vNetSolutionType,
+				}
+				serviceConnectorProperties.VNetSolution = &vNetSolution
+			}
+
+			props := servicelinker.LinkerResource{
+				Id:         utils.String(id.ID()),
+				Name:       utils.String(model.Name),
+				Properties: serviceConnectorProperties,
+			}
+
+			if err := client.LinkerCreateOrUpdateThenPoll(ctx, id, props); err != nil {
+				return fmt.Errorf("creating %s: %+v", id, err)
+			}
+
+			metadata.SetID(id)
+			return nil
+		},
+	}
+}
+
+func (r FunctionAppConnectorResource) Read() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 5 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.ServiceConnector.ServiceLinkerClient
+			id, err := servicelinker.ParseScopedLinkerID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			resp, err := client.LinkerGet(ctx, *id)
+			if err != nil {
+				if response.WasNotFound(resp.HttpResponse) {
+					return metadata.MarkAsGone(id)
+				}
+				return fmt.Errorf("reading %s: %+v", id, err)
+			}
+
+			pwd := metadata.ResourceData.Get("authentication.0.secret").(string)
+
+			if model := resp.Model; model != nil {
+				props := model.Properties
+				if props.AuthInfo == nil || props.TargetService == nil {
+					return nil
+				}
+
+				state := FunctionAppConnectorResourceModel{
+					Name:             id.LinkerName,
+					FunctionAppId:    id.ResourceUri,
+					TargetResourceId: flattenTargetService(props.TargetService),
+					AuthInfo:         flattenServiceConnectorAuthInfo(props.AuthInfo, pwd),
+				}
+
+				if props.ClientType != nil {
+					state.ClientType = string(*props.ClientType)
+				}
+
+				if props.VNetSolution != nil && props.VNetSolution.Type != nil {
+					state.VnetSolution = string(*props.VNetSolution.Type)
+				}
+
+				if props.SecretStore != nil {
+					state.SecretStore = flattenSecretStore(*props.SecretStore)
+				}
+
+				return metadata.Encode(&state)
+			}
+			return nil
+		},
+	}
+}
+
+func (r FunctionAppConnectorResource) Delete() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.ServiceConnector.LinksClient
+			id, err := links.ParseScopedLinkerID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			metadata.Logger.Infof("deleting %s", *id)
+
+			if err := client.LinkerDeleteThenPoll(ctx, *id); err != nil {
+				return fmt.Errorf("deleting %s: %+v", *id, err)
+			}
+			return nil
+		},
+	}
+}
+
+func (r FunctionAppConnectorResource) Update() sdk.ResourceFunc {
+	return sdk.ResourceFunc{
+		Timeout: 30 * time.Minute,
+		Func: func(ctx context.Context, metadata sdk.ResourceMetaData) error {
+			client := metadata.Client.ServiceConnector.LinksClient
+			id, err := links.ParseScopedLinkerID(metadata.ResourceData.Id())
+			if err != nil {
+				return err
+			}
+
+			var state FunctionAppConnectorResourceModel
+			if err := metadata.Decode(&state); err != nil {
+				return fmt.Errorf("decoding state: %+v", err)
+			}
+
+			linkerProps := links.LinkerProperties{}
+			d := metadata.ResourceData
+
+			if d.HasChange("client_type") {
+				clientType := links.ClientType(state.ClientType)
+				linkerProps.ClientType = &clientType
+			}
+
+			if d.HasChange("vnet_solution") {
+				vnetSolutionType := links.VNetSolutionType(state.VnetSolution)
+				vnetSolution := links.VNetSolution{
+					Type: &vnetSolutionType,
+				}
+				linkerProps.VNetSolution = &vnetSolution
+			}
+
+			if d.HasChange("secret_store") {
+				linkerProps.SecretStore = (*links.SecretStore)(expandSecretStore(state.SecretStore))
+			}
+
+			if d.HasChange("authentication") {
+				linkerProps.AuthInfo = state.AuthInfo
+			}
+
+			props := links.LinkerPatch{
+				Properties: &linkerProps,
+			}
+
+			if err := client.LinkerUpdateThenPoll(ctx, *id, props); err != nil {
+				return fmt.Errorf("updating %s: %+v", id, err)
+			}
+
+			return nil
+		},
+	}
+}
+
+func (r FunctionAppConnectorResource) IDValidationFunc() pluginsdk.SchemaValidateFunc {
+	return servicelinker.ValidateScopedLinkerID
+}