Implement Policy resource for LB Http Application Profile

Signed-off-by: Shizhao Liu <[email protected]>
vmware · Dec 8, 2023 · 7792d00 · 7792d00
1 parent e9cf9cf
commit 7792d00
Show file tree

Hide file tree

Showing 5 changed files with 567 additions and 0 deletions.
diff --git a/nsxt/lb_utils.go b/nsxt/lb_utils.go
@@ -11,6 +11,8 @@ import (
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
 	"github.com/vmware/go-vmware-nsxt/loadbalancer"
+	"github.com/vmware/vsphere-automation-sdk-go/runtime/protocol/client"
+	"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/infra"
 )
 
 // Helpers for common LB monitor schema settings
@@ -237,3 +239,34 @@ func resourceNsxtLbMonitorDelete(d *schema.ResourceData, m interface{}) error {
 	}
 	return nil
 }
+
+func resourceNsxtPolicyLBAppProfileExists(id string, connector client.Connector, isGlobalManager bool) (bool, error) {
+	client := infra.NewLbAppProfilesClient(connector)
+	_, err := client.Get(id)
+	if err == nil {
+		return true, nil
+	}
+
+	if isNotFoundError(err) {
+		return false, nil
+	}
+	msg := fmt.Sprintf("Error retrieving resource LBAppProfile")
+	return false, logAPIError(msg, err)
+}
+
+func resourceNsxtPolicyLBAppProfileDelete(d *schema.ResourceData, m interface{}) error {
+	id := d.Id()
+	if id == "" {
+		return fmt.Errorf("Error obtaining LBAppProfile ID")
+	}
+
+	connector := getPolicyConnector(m)
+	forceParam := true
+	client := infra.NewLbAppProfilesClient(connector)
+	err := client.Delete(id, &forceParam)
+	if err != nil {
+		return handleDeleteError("LBAppProfile", id, err)
+	}
+
+	return nil
+}
diff --git a/nsxt/provider.go b/nsxt/provider.go
@@ -437,6 +437,7 @@ func Provider() *schema.Provider {
 			"nsxt_edge_high_availability_profile":          resourceNsxtEdgeHighAvailabilityProfile(),
 			"nsxt_policy_host_transport_node_collection":   resourceNsxtPolicyHostTransportNodeCollection(),
 			"nsxt_policy_lb_client_ssl_profile":            resourceNsxtPolicyLBClientSslProfile(),
+			"nsxt_policy_lb_http_application_profile":      resourceNsxtPolicyLBHttpApplicationProfile(),
 		},
 
 		ConfigureFunc: providerConfigure,

diff --git a/nsxt/resource_nsxt_policy_lb_http_application_profile.go b/nsxt/resource_nsxt_policy_lb_http_application_profile.go
@@ -0,0 +1,240 @@
+/* Copyright © 2020 VMware, Inc. All Rights Reserved.
+   SPDX-License-Identifier: MPL-2.0 */
+
+package nsxt
+
+import (
+	"fmt"
+	"log"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
+	"github.com/vmware/vsphere-automation-sdk-go/runtime/bindings"
+	"github.com/vmware/vsphere-automation-sdk-go/runtime/data"
+	"github.com/vmware/vsphere-automation-sdk-go/runtime/protocol/client"
+	"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/infra"
+	"github.com/vmware/vsphere-automation-sdk-go/services/nsxt/model"
+)
+
+var lBHttpProfileXForwardedForValues = []string{
+	model.LBHttpProfile_X_FORWARDED_FOR_REPLACE,
+	model.LBHttpProfile_X_FORWARDED_FOR_INSERT,
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfile() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceNsxtPolicyLBHttpApplicationProfileCreate,
+		Read:   resourceNsxtPolicyLBHttpApplicationProfileRead,
+		Update: resourceNsxtPolicyLBHttpApplicationProfileUpdate,
+		Delete: resourceNsxtPolicyLBHttpApplicationProfileDelete,
+		Importer: &schema.ResourceImporter{
+			State: nsxtPolicyPathResourceImporter,
+		},
+
+		Schema: map[string]*schema.Schema{
+			"nsx_id":       getNsxIDSchema(),
+			"path":         getPathSchema(),
+			"display_name": getDisplayNameSchema(),
+			"description":  getDescriptionSchema(),
+			"revision":     getRevisionSchema(),
+			"tag":          getTagsSchema(),
+			"http_redirect_to": {
+				Type:        schema.TypeString,
+				Description: "A URL that incoming requests for that virtual server can be temporarily redirected to, If a website is temporarily down or has moved",
+				Optional:    true,
+			},
+			"http_redirect_to_https": {
+				Type:        schema.TypeBool,
+				Description: "A boolean flag which reflects whether the client will automatically be redirected to use SSL",
+				Optional:    true,
+				Default:     false,
+			},
+			"idle_timeout": {
+				Type:         schema.TypeInt,
+				Description:  "Timeout in seconds to specify how long an HTTP application can remain idle",
+				Optional:     true,
+				Default:      15,
+				ValidateFunc: validation.IntAtLeast(1),
+			},
+			"request_body_size": {
+				Type:        schema.TypeInt,
+				Description: "Maximum request body size in bytes (Unlimited if not specified)",
+				Optional:    true,
+			},
+			"request_header_size": {
+				Type:         schema.TypeInt,
+				Description:  "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed",
+				Optional:     true,
+				Default:      1024,
+				ValidateFunc: validation.IntBetween(1, 65536),
+			},
+			"response_buffering": {
+				Type:        schema.TypeBool,
+				Optional:    true,
+				Description: "A boolean flag indicating whether the response received by LB from the backend will be saved into the buffers",
+				Default:     false,
+			},
+			"response_header_size": {
+				Type:         schema.TypeInt,
+				Description:  "Maximum request header size in bytes. Requests with larger header size will be processed as best effort whereas a request with header below this specified size is guaranteed to be processed",
+				Optional:     true,
+				Default:      4096,
+				ValidateFunc: validation.IntBetween(1, 65536),
+			},
+			"response_timeout": {
+				Type:         schema.TypeInt,
+				Description:  "Number of seconds waiting for the server response before the connection is closed",
+				Optional:     true,
+				Default:      60,
+				ValidateFunc: validation.IntAtLeast(1),
+			},
+			"server_keep_alive": {
+				Type:        schema.TypeBool,
+				Optional:    true,
+				Description: "A boolean flag indicating whether the backend connection will be kept alive for client connection. If server_keep_alive is true, it means the backend connection will keep alive for the client connection. Every client connection is tied 1:1 with the corresponding server-side connection. If server_keep_alive is false, it means the backend connection won't keep alive for the client connection.",
+				Default:     false,
+			},
+			"x_forwarded_for": {
+				Type:         schema.TypeString,
+				ValidateFunc: validation.StringInSlice(lBHttpProfileXForwardedForValues, false),
+				Optional:     true,
+				Description:  "When X-Forwareded-For is configured, X-Forwarded-Proto and X-Forwarded-Port information is added automatically into request header",
+			},
+		},
+	}
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfileExists(id string, connector client.Connector, isGlobalManager bool) (bool, error) {
+	return resourceNsxtPolicyLBAppProfileExists(id, connector, isGlobalManager)
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfilePatch(d *schema.ResourceData, m interface{}, id string) error {
+	connector := getPolicyConnector(m)
+	converter := bindings.NewTypeConverter()
+
+	displayName := d.Get("display_name").(string)
+	description := d.Get("description").(string)
+	tags := getPolicyTagsFromSchema(d)
+	httpRedirectTo := d.Get("http_redirect_to").(string)
+	httpRedirectToHTTPS := d.Get("http_redirect_to_https").(bool)
+	idleTimeout := int64(d.Get("idle_timeout").(int))
+	requestBodySize := int64(d.Get("request_body_size").(int))
+	requestHeaderSize := int64(d.Get("request_header_size").(int))
+	responseBuffering := d.Get("response_buffering").(bool)
+	responseHeaderSize := int64(d.Get("response_header_size").(int))
+	responseTimeout := int64(d.Get("response_timeout").(int))
+	serverKeepAlive := d.Get("server_keep_alive").(bool)
+	xForwardedFor := d.Get("x_forwarded_for").(string)
+	resourceType := model.LBAppProfile_RESOURCE_TYPE_LBHTTPPROFILE
+	obj := model.LBHttpProfile{
+		DisplayName:         &displayName,
+		Description:         &description,
+		Tags:                tags,
+		HttpRedirectToHttps: &httpRedirectToHTTPS,
+		IdleTimeout:         &idleTimeout,
+		RequestHeaderSize:   &requestHeaderSize,
+		ResponseBuffering:   &responseBuffering,
+		ResponseHeaderSize:  &responseHeaderSize,
+		ResponseTimeout:     &responseTimeout,
+		ServerKeepAlive:     &serverKeepAlive,
+		ResourceType:        resourceType,
+	}
+	if requestBodySize > 0 {
+		obj.RequestBodySize = &requestBodySize
+	}
+	if len(xForwardedFor) > 0 {
+		obj.XForwardedFor = &xForwardedFor
+	}
+	if len(httpRedirectTo) > 0 {
+		obj.HttpRedirectTo = &httpRedirectTo
+	}
+
+	log.Printf("[INFO] Patching LBHttpProfile with ID %s", id)
+	dataValue, errs := converter.ConvertToVapi(obj, model.LBHttpProfileBindingType())
+	if errs != nil {
+		return fmt.Errorf("Error converting LBHttpProfile %s", errs[0])
+	}
+
+	client := infra.NewLbAppProfilesClient(connector)
+	return client.Patch(id, dataValue.(*data.StructValue))
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfileCreate(d *schema.ResourceData, m interface{}) error {
+
+	// Initialize resource Id and verify this ID is not yet used
+	id, err := getOrGenerateID(d, m, resourceNsxtPolicyLBHttpApplicationProfileExists)
+	if err != nil {
+		return err
+	}
+
+	err = resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id)
+	if err != nil {
+		return handleCreateError("LBHttpProfile", id, err)
+	}
+
+	d.SetId(id)
+	d.Set("nsx_id", id)
+
+	return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m)
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfileRead(d *schema.ResourceData, m interface{}) error {
+	connector := getPolicyConnector(m)
+	converter := bindings.NewTypeConverter()
+
+	id := d.Id()
+	if id == "" {
+		return fmt.Errorf("Error obtaining LBHttpProfile ID")
+	}
+
+	client := infra.NewLbAppProfilesClient(connector)
+	obj, err := client.Get(id)
+	if err != nil {
+		return handleReadError(d, "LBHttpProfile", id, err)
+	}
+
+	baseObj, errs := converter.ConvertToGolang(obj, model.LBHttpProfileBindingType())
+	if len(errs) > 0 {
+		return fmt.Errorf("LBAppProfile with id %s is not of type LBHttpProfile %s", id, errs[0])
+	}
+	lbHTTPProfile := baseObj.(model.LBHttpProfile)
+
+	d.Set("display_name", lbHTTPProfile.DisplayName)
+	d.Set("description", lbHTTPProfile.Description)
+	setPolicyTagsInSchema(d, lbHTTPProfile.Tags)
+	d.Set("nsx_id", id)
+	d.Set("path", lbHTTPProfile.Path)
+	d.Set("revision", lbHTTPProfile.Revision)
+
+	d.Set("http_redirect_to", lbHTTPProfile.HttpRedirectTo)
+	d.Set("http_redirect_to_https", lbHTTPProfile.HttpRedirectToHttps)
+	d.Set("idle_timeout", lbHTTPProfile.IdleTimeout)
+	d.Set("request_body_size", lbHTTPProfile.RequestBodySize)
+	d.Set("request_header_size", lbHTTPProfile.RequestHeaderSize)
+	d.Set("response_buffering", lbHTTPProfile.ResponseBuffering)
+	d.Set("response_header_size", lbHTTPProfile.ResponseHeaderSize)
+	d.Set("response_timeout", lbHTTPProfile.ResponseTimeout)
+	d.Set("server_keep_alive", lbHTTPProfile.ServerKeepAlive)
+	d.Set("x_forwarded_for", lbHTTPProfile.XForwardedFor)
+
+	return nil
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfileUpdate(d *schema.ResourceData, m interface{}) error {
+
+	id := d.Id()
+	if id == "" {
+		return fmt.Errorf("Error obtaining LBHttpProfile ID")
+	}
+
+	err := resourceNsxtPolicyLBHttpApplicationProfilePatch(d, m, id)
+	if err != nil {
+		return handleUpdateError("LBHttpProfile", id, err)
+	}
+
+	return resourceNsxtPolicyLBHttpApplicationProfileRead(d, m)
+}
+
+func resourceNsxtPolicyLBHttpApplicationProfileDelete(d *schema.ResourceData, m interface{}) error {
+	return resourceNsxtPolicyLBAppProfileDelete(d, m)
+}