azurerm_nginx_deployment - Omit capacity when creating basic plans #26223
Conversation
|
LGTM! 👍 |
|
@stephybun I see you've look at other PRs in this area, could I please get some help with a code review? |
| @@ -430,7 +436,10 @@ func (m DeploymentResource) Create() sdk.ResourceFunc { | |||
| prop.NetworkProfile.NetworkInterfaceConfiguration.SubnetId = pointer.FromString(model.NetworkInterface[0].SubnetId) | |||
| } | |||
|
|
|||
There was a problem hiding this comment.
should we add a check that returns an error if the plan is basic and the user attempts to set these properties?
There was a problem hiding this comment.
I considered that, but I don't think so. There's server side validation to fail fast with 400 Bad Request and a useful error message if the user attempts something like plan = "basic" and capacity = 30.
There are many server-side validations for the nginxdeployment.NginxDeployment{} data, and I didn't want to start duplicating that logic in the terraform provider. NGINXaaS evolves fairly rapidly, and I wanted to avoid bad UX coming from inconsistent validation logic if azurerm_nginx_deployment follows different rules than the azure CLI or portal.
Does that sound reasonable?
There was a problem hiding this comment.
@katbyte please let me know what you think, I'd love to get this merged.
There was a problem hiding this comment.
@katbyte thoughts? I can add a check if you feel strongly about it.
There was a problem hiding this comment.
Well this PR is due to the server side validation code not handling this in a good way thou eh?
I would rather us check for bad data and return an error to the user over us silently not sending the data to the API that triggers a bad data response (which lacks a clear action for the user to take i presume) Not to mention if the user sets the value to 20 it will just silently not set it and also not trigger and server side validation.
so could we please change this to returning an error with basic and a capacity above zero rather then just omitting it? you might also have to change this to check if the property is set woth d.GetOkExists()
There was a problem hiding this comment.
Well this PR is due to the server side validation code not handling this in a good way thou eh?
Not quite. This PR is due to azurerm_nginx_deployment applying a default capacity of 20, with no way for the user to specify "no capacity". The new "Basic" SKU does not support scaling of any kind, but azurerm_nginx_deployment was always sending a capacity.
I would rather us check for bad data and return an error to the user over us silently not sending the data to the API that triggers a bad data response (which lacks a clear action for the user to take i presume) Not to mention if the user sets the value to 20 it will just silently not set it and also not trigger and server side validation.
Agreed. The problem is there's no mechanism for a user to provide good capacity data for a basic SKU
resource "azurerm_nginx_deployment" "example" {
sku = "basic"
# implicity gets capacity = 20, which is invalid
}This weird conditional is an attempt to get TF to stop sending a capacity when the user doesn't ask for one. We currently have our server-side validation hacked to ignore capacity when for basic SKUs, but we want to remove that and return 400s with a good error message, like we do for other invalid combinations.
so could we please change this to returning an error with basic and a capacity above zero rather then just omitting it? you might also have to change this to check if the property is set woth d.GetOkExists()
Unfortunately due to the Default value, the capacity is always above zero regardless of what the user does.
I tried GetOkExists, but it still returns true when I omit capacity. Per the doc string, GetOkExists doesn't seem to work when there's a default value.
I didn't love the solution in this PR, it seemed like the least bad option that remained backward compatible. We considered a few alternatives:
- remove the
Default: 20- this would be a backwards incompatible change for TF users, and we didn't want to be that disruptive nor wait for the 4.0 release - change the
CapacityValidationFunctovalidation.IntAtLeast(0)and add docs saying you have to usecapacity = 0for basic SKUs - this felt like an extra step for users, and we were worried about allowing zeros into peoples' TF state setting up more backward compat problems in the future
Based on you're feedback, it sounds like the IntAtLeast(0) approach is preferable. I can update this PR to match, do you see any other options that might be better?
There was a problem hiding this comment.
Its worth noting the 4.0 release will be within the next month or so so that could be changed, it might make sense to just have it be computed without a default as i presume the API will set a default of 20? and then GetOkExists could work.
outside that as it is not supported with basic the check could simply be if model.Capacity > 0 && ! strings.HasPrefix(model.Sku, "basic") { ? with a error thrown if capacity is not 20. its not ideal as a user could specify a capacity and not realize its not being sent but that could be resolved later on as i think with framework we will have the ability to know if its not set.
There was a problem hiding this comment.
4.0 release will be within the next month or so
That's good to know, but I'd like to get something working for the 3.x users who might take awhile to upgrade.
the check could simply be... with a error thrown
Sounds good, I've updated this PR accordingly, and testing locally works as expected.
ryepup
force-pushed
the
basic-special-case
branch
from
c651b0f to
6c22936
Compare
ryepup
force-pushed
the
basic-special-case
branch
from
6c22936 to
9017f1c
Compare
The new [Basic SKU][0] does not support any scaling, and it is an error to
provide `Capacity` or `AutoScaleSettings`. The resource is implemented
in such a way that it was not possible to call
`DeploymentsCreateOrUpdateThenPoll` without one of these in the
`ScalingProperties`, which is illegal for the Basic SKUs.
Currently the backend has a hack to silently drop `ScalingProperties`
for Basic SKUs, but this is a confusing user experience:
- initial `terraform apply` submits a `PUT` with `"scalingProperties":
{"capacity": 20}` - this validation error is currently suppressed and
the server reports back `"scalingProperties": null`
- next `terraform plan` detects a `capacity 0 -> 20`
- applying that plan requests a `PATCH` with `"scalingProperties":
{"capacity": 20}`, that fails with a `UnsupportedOnBasicPlan` error
It gets more misleading if users specify a capacity explicity;
`capacity = 500` or `auto_scale_profile` will apply successfully, but
get silently ignored server-side.
This patch checks for basic plans and omits the `scalingProperties`
when the user hasn't changed from the default value. We already
instruct users to ignore `capacity`, but the check is needed to
prevent the implicit default value of 20 from getting into the
`DeploymentsCreateOrUpdateThenPoll` request.
[0]: https://docs.nginx.com/nginxaas/azure/billing/overview/#basic-plan
ryepup
force-pushed
the
basic-special-case
branch
from
9017f1c to
3fe08db
Compare
@stephybun Changes for 4.0 will come in a different PR, this is just to get a fix in for the 3.x versions that our clients are currently using. |
|
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active contributions. |
The new Basic SKU does not support any scaling, and it is an error to provide
CapacityorAutoScaleSettings. The resource is implemented in such a way that it was not possible to callDeploymentsCreateOrUpdateThenPollwithout one of these in theScalingProperties, which is illegal for the Basic SKUs.Currently the backend has a hack to silently drop
ScalingPropertiesfor Basic SKUs, but this is a confusing user experience:initial
terraform applysubmits aPUTwith"scalingProperties": {"capacity": 20}- this validation error is currently suppressed and the server reports back"scalingProperties": nullnext
terraform plandetects acapacity 0 -> 20applying that plan requests a
PATCHwith"scalingProperties": {"capacity": 20}, that fails with aUnsupportedOnBasicPlanerrorIt gets more misleading if users specify a capacity explicity;
capacity = 500orauto_scale_profilewill apply successfully, but get silently ignored server-side.This patch checks for basic plans and omits the
scalingPropertieswhen the user hasn't changed from the default value. We already instruct users to ignorecapacity, but the check is needed to prevent the implicit default value of 20 from getting into theDeploymentsCreateOrUpdateThenPollrequest.Community Note
Description
PR Checklist
For example: “
resource_name_here- description of change e.g. adding propertynew_property_name_here”Changes to existing Resource / Data Source
Testing
Change Log
Below please provide what should go into the changelog (if anything) conforming to the Changelog Format documented here.
azurerm_nginx_deployment- support for thebasic_Monthlyskus [azurerm_nginx_deployment - Omit capacity when creating basic plans #26223]This is a (please select all that apply):
Related Issue(s)
Note
If this PR changes meaningfully during the course of review please update the title and description as required.