This repository has been archived by the owner on Jun 1, 2023. It is now read-only.
/
resource_role.go
110 lines (100 loc) · 2.38 KB
/
resource_role.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
package graylog
import (
"github.com/hashicorp/terraform/helper/schema"
"github.com/suzuki-shunsuke/go-set"
"github.com/suzuki-shunsuke/go-graylog"
)
func resourceRole() *schema.Resource {
return &schema.Resource{
Create: resourceRoleCreate,
Read: resourceRoleRead,
Update: resourceRoleUpdate,
Delete: resourceRoleDelete,
Importer: &schema.ResourceImporter{
State: schema.ImportStatePassthrough,
},
Schema: map[string]*schema.Schema{
"name": {
Type: schema.TypeString,
Required: true,
},
"permissions": {
Type: schema.TypeSet,
Required: true,
Elem: &schema.Schema{Type: schema.TypeString},
},
"description": {
Type: schema.TypeString,
Optional: true,
},
"read_only": {
Type: schema.TypeBool,
Optional: true,
Computed: true,
},
},
}
}
func newRole(d *schema.ResourceData) *graylog.Role {
return &graylog.Role{
Name: d.Get("name").(string),
Permissions: set.NewStrSet(getStringArray(d.Get("permissions").(*schema.Set).List())...),
Description: d.Get("description").(string),
ReadOnly: d.Get("read_only").(bool),
}
}
func resourceRoleCreate(d *schema.ResourceData, m interface{}) error {
cl, err := newClient(m)
if err != nil {
return err
}
role := newRole(d)
if _, err := cl.CreateRole(role); err != nil {
return err
}
d.SetId(role.Name)
return nil
}
func resourceRoleRead(d *schema.ResourceData, m interface{}) error {
cl, err := newClient(m)
if err != nil {
return err
}
role, _, err := cl.GetRole(d.Id())
if err != nil {
return err
}
if err := setStrToRD(d, "name", role.Name); err != nil {
return err
}
if err := setStrListToRD(d, "permissions", role.Permissions.ToList()); err != nil {
return err
}
if err := setStrToRD(d, "description", role.Description); err != nil {
return err
}
return setBoolToRD(d, "read_only", role.ReadOnly)
}
func resourceRoleUpdate(d *schema.ResourceData, m interface{}) error {
o, n := d.GetChange("name")
oldName := o.(string)
newName := n.(string)
cl, err := newClient(m)
if err != nil {
return err
}
role := newRole(d)
role.Name = newName
_, _, err = cl.UpdateRole(oldName, role.NewUpdateParams())
return err
}
func resourceRoleDelete(d *schema.ResourceData, m interface{}) error {
cl, err := newClient(m)
if err != nil {
return err
}
if _, err := cl.DeleteRole(d.Id()); err != nil {
return err
}
return nil
}