New Resource: azurerm_security_center_subscription_pricing #2043
Conversation
|
|
||
| # azurerm_securitycenter_subscription_pricing | ||
|
|
||
| Manages the subscription's Security Center pricing tier. |
There was a problem hiding this comment.
Does this resource need Owner permission here?
There was a problem hiding this comment.
From memory I believe this does - but it'd be worth confirming/documenting here
| }, | ||
|
|
||
| Schema: map[string]*schema.Schema{ | ||
| "tier": { |
There was a problem hiding this comment.
Does the API support in-place update ?
| client := meta.(*ArmClient).securityCenterPricingClient | ||
| ctx := meta.(*ArmClient).StopContext | ||
|
|
||
| resp, err := client.GetSubscriptionPricing(ctx, "default") |
There was a problem hiding this comment.
It cannot be done as resp is used below
| client := meta.(*ArmClient).securityCenterPricingClient | ||
| ctx := meta.(*ArmClient).StopContext | ||
|
|
||
| resp, err := client.GetSubscriptionPricing(ctx, "default") |
There was a problem hiding this comment.
Shall we move "default" to a constant variable?
|
|
||
| resp, err := client.GetSubscriptionPricing(ctx, "default") | ||
| if err != nil { | ||
| if utils.ResponseWasNotFound(resp.Response) { |
There was a problem hiding this comment.
Is it because of terraform import ?
| }, | ||
| } | ||
|
|
||
| _, err := client.UpdateSubscriptionPricing(ctx, "default", pricing) |
| return fmt.Errorf("Error creating/updating Security Center Subscription pricing: %+v", err) | ||
| } | ||
|
|
||
| resp, err := client.GetSubscriptionPricing(ctx, "default") |
There was a problem hiding this comment.
Is the GetSubscriptionPricing duplicated with resourceArmSecurityCenterSubscriptionPricingRead ?
| "tier": { | ||
| Type: schema.TypeString, | ||
| Required: true, | ||
| DiffSuppressFunc: suppress.CaseDifference, |
There was a problem hiding this comment.
we can remove this since we're requiring the case matches below
| } | ||
|
|
||
| func resourceArmSecurityCenterSubscriptionPricingDelete(_ *schema.ResourceData, _ interface{}) error { | ||
| return nil //cannot be deleted |
There was a problem hiding this comment.
can we revert to whatever the default value is? we do this for the Postgresql/MySql configuration value resources
| "github.com/terraform-providers/terraform-provider-azurerm/azurerm/utils" | ||
| ) | ||
|
|
||
| func resourceArmSecurityCenterSubscriptionPricing() *schema.Resource { |
There was a problem hiding this comment.
thinking about this longer term - I think this'd make more sense as a nested element on the azurerm_subscription resource (but this is fine as an independent resource for the moment) 🤔
azurerm/provider.go
Outdated
| @@ -243,6 +243,7 @@ func Provider() terraform.ResourceProvider { | |||
| "azurerm_route": resourceArmRoute(), | |||
| "azurerm_route_table": resourceArmRouteTable(), | |||
| "azurerm_search_service": resourceArmSearchService(), | |||
| "azurerm_securitycenter_subscription_pricing": resourceArmSecurityCenterSubscriptionPricing(), | |||
There was a problem hiding this comment.
securitycenter -> security_center
| page_title: "Azure Resource Manager: azurerm_securitycenter_subscription_pricing" | ||
| sidebar_current: "docs-azurerm-securitycenter-subscription-pricing" | ||
| description: |- | ||
| Manages the subscription's Security Center pricing tier. |
There was a problem hiding this comment.
I think this'd read clearer as Manages the Pricing Tier for Azure Security Center in the current subscription - what do you think (and below too)
|
|
||
| # azurerm_securitycenter_subscription_pricing | ||
|
|
||
| Manages the subscription's Security Center pricing tier. |
There was a problem hiding this comment.
From memory I believe this does - but it'd be worth confirming/documenting here
|
|
||
| * `tier` - (Required) The pricing tier to use. Must be one of `Free` or `Standard`. | ||
|
|
||
| ~> **NOTE:** Changing the pricing tier to `Standard` affects all resources in the subscription and could be quite costly. |
katbyte
force-pushed
the
r-security-pricing
branch
from
8fa67b0 to
0f32cf6
Compare
katbyte
force-pushed
the
r-security-pricing
branch
from
0f32cf6 to
1ee95b2
Compare
|
Tests pass: |
| ) | ||
|
|
||
| func TestAccAzureRMSecurityCenterSubscriptionPricing_update(t *testing.T) { | ||
| resourceName := "azurerm_security_center_subscription_pricing.test" |
There was a problem hiding this comment.
this is fine for now - we may want to add a feature-toggle for this in time
| The pricing tier can be imported using the `resource id`, e.g. | ||
|
|
||
| ```shell | ||
| terraform import azurerm_securitycenter_subscription_pricing.example /subscriptions/00000000-0000-0000-0000-000000000000/providers/Microsoft.Security/pricings/default |
There was a problem hiding this comment.
securitycenter -> security_center
|
|
||
| The following arguments are supported: | ||
|
|
||
| * `tier` - (Required) The pricing tier to use. Must be one of `Free` or `Standard`. |
There was a problem hiding this comment.
to match the other resources this'd be better as:
Possible values are `Free` and `Standard`
|
|
||
| Manages the Pricing Tier for Azure Security Center in the current subscription. | ||
|
|
||
| ~> **NOTE:** Owner access permission is required. |
There was a problem hiding this comment.
Would this be clearer as:
This resource requires the `Owner` permission on the Subscription
tombuildsstuff
changed the title
|
|
||
| # azurerm_security_center_subscription_pricing | ||
|
|
||
| Manages the Pricing Tier for Azure Security Center in the current subscription. |
There was a problem hiding this comment.
IMO we should add a note about Deletion here
katbyte
force-pushed
the
r-security-pricing
branch
from
433fac6 to
4a4268b
Compare
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks! |
ghost
locked and limited conversation to collaborators
No description provided.