-
Notifications
You must be signed in to change notification settings - Fork 85
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Implement Policy resource for LB Http Application Profile
Signed-off-by: Shizhao Liu <[email protected]>
- Loading branch information
Shizhao Liu
committed
Dec 7, 2023
1 parent
e9cf9cf
commit 0726bc6
Showing
5 changed files
with
583 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
249 changes: 249 additions & 0 deletions
249
nsxt/resource_nsxt_policy_lb_http_application_profile.go
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,249 @@ | ||
/* Copyright © 2020 VMware, Inc. All Rights Reserved. | ||
SPDX-License-Identifier: MPL-2.0 */ | ||
|
||
package nsxt | ||
|
||
import ( | ||
"fmt" | ||
"log" | ||
|
||
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema" | ||
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation" | ||
"github.com/vmware/vsphere-automation-sdk-go/runtime/bindings" | ||
"github.com/vmware/vsphere-automation-sdk-go/runtime/data" | ||
"github.com/vmware/vsphere-automation-sdk-go/runtime/protocol/client" | ||
"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/infra" | ||
"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/model" | ||
) | ||
|
||
var lBHttpProfileXForwardedForValues = []string{ | ||
model.LBHttpProfile_X_FORWARDED_FOR_REPLACE, | ||
model.LBHttpProfile_X_FORWARDED_FOR_INSERT, | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfile() *schema.Resource { | ||
return &schema.Resource{ | ||
Create: resourceNsxtPolicyLBHttpApplicationProfileCreate, | ||
Read: resourceNsxtPolicyLBHttpApplicationProfileRead, | ||
Update: resourceNsxtPolicyLBHttpApplicationProfileUpdate, | ||
Delete: resourceNsxtPolicyLBHttpApplicationProfileDelete, | ||
Importer: &schema.ResourceImporter{ | ||
State: nsxtPolicyPathResourceImporter, | ||
}, | ||
|
||
Schema: map[string]*schema.Schema{ | ||
"nsx_id": getNsxIDSchema(), | ||
"path": getPathSchema(), | ||
"display_name": getDisplayNameSchema(), | ||
"description": getDescriptionSchema(), | ||
"revision": getRevisionSchema(), | ||
"tag": getTagsSchema(), | ||
"http_redirect_to": { | ||
Type: schema.TypeString, | ||
Description: "A URL that incoming requests for that virtual server can be temporarily redirected to, If a website is temporarily down or has moved", | ||
Optional: true, | ||
}, | ||
"http_redirect_to_https": { | ||
Type: schema.TypeBool, | ||
Description: "A boolean flag which reflects whether the client will automatically be redirected to use SSL", | ||
Optional: true, | ||
Default: false, | ||
}, | ||
"idle_timeout": { | ||
Type: schema.TypeInt, | ||
Description: "Timeout in seconds to specify how long an HTTP application can remain idle", | ||
Optional: true, | ||
Default: 15, | ||
ValidateFunc: validation.IntAtLeast(1), | ||
}, | ||
"ntlm": { | ||
Type: schema.TypeBool, | ||
Description: "A boolean flag which reflects whether NTLM challenge/response methodology will be used over HTTP", | ||
Optional: true, | ||
Deprecated: "Use server_keep_alive instead", | ||
}, | ||
"request_body_size": { | ||
Type: schema.TypeInt, | ||
Description: "Maximum request body size in bytes (Unlimited if not specified)", | ||
Optional: true, | ||
}, | ||
"request_header_size": { | ||
Type: schema.TypeInt, | ||
Description: "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed", | ||
Optional: true, | ||
Default: 1024, | ||
ValidateFunc: validation.IntBetween(1, 65536), | ||
}, | ||
"response_buffering": { | ||
Type: schema.TypeBool, | ||
Optional: true, | ||
Description: "A boolean flag indicating whether the response received by LB from the backend will be saved into the buffers", | ||
Default: false, | ||
}, | ||
"response_header_size": { | ||
Type: schema.TypeInt, | ||
Description: "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed", | ||
Optional: true, | ||
Default: 4096, | ||
ValidateFunc: validation.IntBetween(1, 65536), | ||
}, | ||
"response_timeout": { | ||
Type: schema.TypeInt, | ||
Description: "Number of seconds waiting for the server response before the connection is closed", | ||
Optional: true, | ||
Default: 60, | ||
ValidateFunc: validation.IntAtLeast(1), | ||
}, | ||
"server_keep_alive": { | ||
Type: schema.TypeBool, | ||
Optional: true, | ||
Description: "A boolean flag indicating whether the backend connection will be kept alive for client connection. If server_keep_alive is true, it means the backend connection will keep alive for the client connection. Every client connection is tied 1:1 with the corresponding server-side connection. If server_keep_alive is false, it means the backend connection won't keep alive for the client connection.", | ||
Default: false, | ||
}, | ||
"x_forwarded_for": { | ||
Type: schema.TypeString, | ||
ValidateFunc: validation.StringInSlice(lBHttpProfileXForwardedForValues, false), | ||
Optional: true, | ||
Description: "When X-Forwareded-For is configured, X-Forwarded-Proto and X-Forwarded-Port information is added automatically into request header", | ||
}, | ||
}, | ||
} | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfileExists(id string, connector client.Connector, isGlobalManager bool) (bool, error) { | ||
return resourceNsxtPolicyLBAppProfileExists(id, connector, isGlobalManager, model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE) | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfilePatch(d *schema.ResourceData, m interface{}, id string) error { | ||
connector := getPolicyConnector(m) | ||
converter := bindings.NewTypeConverter() | ||
|
||
displayName := d.Get("display_name").(string) | ||
description := d.Get("description").(string) | ||
tags := getPolicyTagsFromSchema(d) | ||
httpRedirectTo := d.Get("http_redirect_to").(string) | ||
httpRedirectToHTTPS := d.Get("http_redirect_to_https").(bool) | ||
idleTimeout := int64(d.Get("idle_timeout").(int)) | ||
ntlm := d.Get("ntlm").(bool) | ||
requestBodySize := int64(d.Get("request_body_size").(int)) | ||
requestHeaderSize := int64(d.Get("request_header_size").(int)) | ||
responseBuffering := d.Get("response_buffering").(bool) | ||
responseHeaderSize := int64(d.Get("response_header_size").(int)) | ||
responseTimeout := int64(d.Get("response_timeout").(int)) | ||
serverKeepAlive := d.Get("server_keep_alive").(bool) | ||
xForwardedFor := d.Get("x_forwarded_for").(string) | ||
resourceType := model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE | ||
obj := model.LBHttpProfile{ | ||
DisplayName: &displayName, | ||
Description: &description, | ||
Tags: tags, | ||
HttpRedirectToHttps: &httpRedirectToHTTPS, | ||
IdleTimeout: &idleTimeout, | ||
Ntlm: &ntlm, | ||
RequestHeaderSize: &requestHeaderSize, | ||
ResponseBuffering: &responseBuffering, | ||
ResponseHeaderSize: &responseHeaderSize, | ||
ResponseTimeout: &responseTimeout, | ||
ServerKeepAlive: &serverKeepAlive, | ||
ResourceType: resourceType, | ||
} | ||
if requestBodySize > 0 { | ||
obj.RequestBodySize = &requestBodySize | ||
} | ||
if len(xForwardedFor) > 0 { | ||
obj.XForwardedFor = &xForwardedFor | ||
} | ||
if len(httpRedirectTo) > 0 { | ||
obj.HttpRedirectTo = &httpRedirectTo | ||
} | ||
|
||
log.Printf("[INFO] Patching LBHttpProfile with ID %s", id) | ||
dataValue, errs := converter.ConvertToVapi(obj, model.LBHttpProfileBindingType()) | ||
if errs != nil { | ||
return fmt.Errorf("Error converting LBHttpProfile %s", errs[0]) | ||
} | ||
|
||
client := infra.NewLbAppProfilesClient(connector) | ||
return client.Patch(id, dataValue.(*data.StructValue)) | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfileCreate(d *schema.ResourceData, m interface{}) error { | ||
|
||
// Initialize resource Id and verify this ID is not yet used | ||
id, err := getOrGenerateID(d, m, resourceNsxtPolicyLBHttpApplicationProfileExists) | ||
if err != nil { | ||
return err | ||
} | ||
|
||
err = resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id) | ||
if err != nil { | ||
return handleCreateError("LBHttpProfile", id, err) | ||
} | ||
|
||
d.SetId(id) | ||
d.Set("nsx_id", id) | ||
|
||
return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m) | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfileRead(d *schema.ResourceData, m interface{}) error { | ||
connector := getPolicyConnector(m) | ||
converter := bindings.NewTypeConverter() | ||
|
||
id := d.Id() | ||
if id == "" { | ||
return fmt.Errorf("Error obtaining LBHttpProfile ID") | ||
} | ||
|
||
client := infra.NewLbAppProfilesClient(connector) | ||
obj, err := client.Get(id) | ||
if err != nil { | ||
return handleReadError(d, "LBHttpProfile", id, err) | ||
} | ||
|
||
baseObj, errs := converter.ConvertToGolang(obj, model.LBHttpProfileBindingType()) | ||
if len(errs) > 0 { | ||
return fmt.Errorf("LBAppProfile with id %s is not of type LBHttpProfile %s", id, errs[0]) | ||
} | ||
lbHTTPProfile := baseObj.(model.LBHttpProfile) | ||
|
||
d.Set("display_name", lbHTTPProfile.DisplayName) | ||
d.Set("description", lbHTTPProfile.Description) | ||
setPolicyTagsInSchema(d, lbHTTPProfile.Tags) | ||
d.Set("nsx_id", id) | ||
d.Set("path", lbHTTPProfile.Path) | ||
d.Set("revision", lbHTTPProfile.Revision) | ||
|
||
d.Set("http_redirect_to", lbHTTPProfile.HttpRedirectTo) | ||
d.Set("http_redirect_to_https", lbHTTPProfile.HttpRedirectToHttps) | ||
d.Set("idle_timeout", lbHTTPProfile.IdleTimeout) | ||
d.Set("ntlm", lbHTTPProfile.Ntlm) | ||
d.Set("request_body_size", lbHTTPProfile.RequestBodySize) | ||
d.Set("request_header_size", lbHTTPProfile.RequestHeaderSize) | ||
d.Set("response_buffering", lbHTTPProfile.ResponseBuffering) | ||
d.Set("response_header_size", lbHTTPProfile.ResponseHeaderSize) | ||
d.Set("response_timeout", lbHTTPProfile.ResponseTimeout) | ||
d.Set("server_keep_alive", lbHTTPProfile.ServerKeepAlive) | ||
d.Set("x_forwarded_for", lbHTTPProfile.XForwardedFor) | ||
|
||
return nil | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfileUpdate(d *schema.ResourceData, m interface{}) error { | ||
|
||
id := d.Id() | ||
if id == "" { | ||
return fmt.Errorf("Error obtaining LBHttpProfile ID") | ||
} | ||
|
||
err := resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id) | ||
if err != nil { | ||
return handleUpdateError("LBHttpProfile", id, err) | ||
} | ||
|
||
return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m) | ||
} | ||
|
||
func resourceNsxtPolicyLBHttpApplicationProfileDelete(d *schema.ResourceData, m interface{}) error { | ||
return resourceNsxtPolicyLBAppProfileDelete(d, m, model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE) | ||
} |
Oops, something went wrong.