Create user resource

Author: Sander0542

docs/resources/user.md

@@ -0,0 +1,80 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "nginxproxymanager_user Resource - nginxproxymanager"
+subcategory: "Users"
+description: |-
+  This resource can be used to manage a user.
+---
+
+# nginxproxymanager_user (Resource)
+
+This resource can be used to manage a user.
+
+
+## Example Usage
+
+```terraform
+resource "nginxproxymanager_user" "user" {
+  name     = "John Doe"
+  nickname = "john.doe"
+  email    = "john.doe@example.com"
+
+  is_admin = false
+
+  permissions = {
+    visibility = "all"
+
+    proxy_hosts       = "manage"
+    dead_hosts        = "manage"
+    redirection_hosts = "manage"
+    streams           = "manage"
+
+    access_lists = "view"
+    certificates = "view"
+  }
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `email` (String) The email of the user.
+- `name` (String) The name of the user.
+- `nickname` (String) The nickname of the user.
+
+### Optional
+
+- `is_admin` (Boolean) Whether the user is an administrator.
+- `is_disabled` (Boolean) Whether the user is disabled.
+- `permissions` (Attributes) The permissions of the user. (see [below for nested schema](#nestedatt--permissions))
+
+### Read-Only
+
+- `avatar` (String) The avatar of the user.
+- `created_on` (String) The date and time the user was created.
+- `id` (Number) The Id of the user.
+- `modified_on` (String) The date and time the user was last modified.
+
+<a id="nestedatt--permissions"></a>
+### Nested Schema for `permissions`
+
+Optional:
+
+- `access_lists` (String) The permission value for the access lists. Must be one of `manage`, `view` or `hidden`.
+- `certificates` (String) The permission value for the certificates. Must be one of `manage`, `view` or `hidden`.
+- `dead_hosts` (String) The permission value for the dead hosts. Must be one of `manage`, `view` or `hidden`.
+- `proxy_hosts` (String) The permission value for the proxy hosts. Must be one of `manage`, `view` or `hidden`.
+- `redirection_hosts` (String) The permission value for the redirection hosts. Must be one of `manage`, `view` or `hidden`.
+- `streams` (String) The permission value for the streams. Must be one of `manage`, `view` or `hidden`.
+- `visibility` (String) The level of visibility for the user. Must be one of `user` or `all`.
+
+## Import
+
+Import is supported using the following syntax:
+
+```shell
+# Users can be imported by specifying the numeric identifier of the user.
+terraform import nginxproxymanager_user.user 1
+```

examples/resources/nginxproxymanager_user/import.sh

@@ -0,0 +1,2 @@
+# Users can be imported by specifying the numeric identifier of the user.
+terraform import nginxproxymanager_user.user 1

examples/resources/nginxproxymanager_user/resource.tf

@@ -0,0 +1,19 @@
+resource "nginxproxymanager_user" "user" {
+  name     = "John Doe"
+  nickname = "john.doe"
+  email    = "john.doe@example.com"
+
+  is_admin = false
+
+  permissions = {
+    visibility = "all"
+
+    proxy_hosts       = "manage"
+    dead_hosts        = "manage"
+    redirection_hosts = "manage"
+    streams           = "manage"
+
+    access_lists = "view"
+    certificates = "view"
+  }
+}

internal/provider/models/user_permissions.go

@@ -8,6 +8,7 @@ import (
 	"github.com/hashicorp/terraform-plugin-framework/attr"
 	"github.com/hashicorp/terraform-plugin-framework/diag"
 	"github.com/hashicorp/terraform-plugin-framework/types"
+	"github.com/hashicorp/terraform-plugin-framework/types/basetypes"
 	"github.com/sander0542/nginxproxymanager-go"
 )
 
@@ -43,6 +44,20 @@ func (m *UserPermissions) Write(ctx context.Context, permissions *nginxproxymana
 	m.Visibility = types.StringValue(permissions.GetVisibility())
 }
 
+func (m *UserPermissions) ToRequest(ctx context.Context, diags *diag.Diagnostics) *nginxproxymanager.GetAccessLists200ResponseInnerOwnerPermissions {
+	request := nginxproxymanager.NewGetAccessLists200ResponseInnerOwnerPermissions(
+		m.Visibility.ValueString(),
+		m.AccessLists.ValueString(),
+		m.DeadHosts.ValueString(),
+		m.ProxyHosts.ValueString(),
+		m.RedirectionHosts.ValueString(),
+		m.Streams.ValueString(),
+		m.Certificates.ValueString(),
+	)
+
+	return request
+}
+
 func ObjectUserPermissionsFrom(ctx context.Context, permissions nginxproxymanager.GetAccessLists200ResponseInnerOwnerPermissions) (types.Object, diag.Diagnostics) {
 	diags := diag.Diagnostics{}
 
@@ -54,3 +69,10 @@ func ObjectUserPermissionsFrom(ctx context.Context, permissions nginxproxymanage
 
 	return object, diags
 }
+
+func UserPermissionsAs(ctx context.Context, object types.Object) (UserPermissions, diag.Diagnostics) {
+	permissions := UserPermissions{}
+	diags := object.As(ctx, &permissions, basetypes.ObjectAsOptions{})
+
+	return permissions, diags
+}

internal/provider/models/user_resource.go

@@ -0,0 +1,80 @@
+// Copyright (c) Sander Jochems
+// SPDX-License-Identifier: MIT
+
+package models
+
+import (
+	"context"
+	"github.com/hashicorp/terraform-plugin-framework/diag"
+	"github.com/hashicorp/terraform-plugin-framework/types"
+	"github.com/sander0542/nginxproxymanager-go"
+	"slices"
+)
+
+type UserResource struct {
+	Id         types.Int64  `tfsdk:"id"`
+	CreatedOn  types.String `tfsdk:"created_on"`
+	ModifiedOn types.String `tfsdk:"modified_on"`
+
+	Name        types.String `tfsdk:"name"`
+	Nickname    types.String `tfsdk:"nickname"`
+	Email       types.String `tfsdk:"email"`
+	Avatar      types.String `tfsdk:"avatar"`
+	IsDisabled  types.Bool   `tfsdk:"is_disabled"`
+	IsAdmin     types.Bool   `tfsdk:"is_admin"`
+	Permissions types.Object `tfsdk:"permissions"`
+}
+
+func (m *UserResource) Write(ctx context.Context, user *nginxproxymanager.GetAccessLists200ResponseInnerOwner, diags *diag.Diagnostics) {
+	var tmpDiags diag.Diagnostics
+
+	m.Id = types.Int64Value(user.GetId())
+	m.CreatedOn = types.StringValue(user.GetCreatedOn())
+	m.ModifiedOn = types.StringValue(user.GetModifiedOn())
+
+	m.Name = types.StringValue(user.GetName())
+	m.Nickname = types.StringValue(user.GetNickname())
+	m.Email = types.StringValue(user.GetEmail())
+	m.Avatar = types.StringValue(user.GetAvatar())
+	m.IsDisabled = types.BoolValue(user.GetIsDisabled())
+	m.IsAdmin = types.BoolValue(slices.Contains(user.GetRoles(), "admin"))
+
+	if user.HasPermissions() {
+		m.Permissions, tmpDiags = ObjectUserPermissionsFrom(ctx, user.GetPermissions())
+		diags.Append(tmpDiags...)
+	} else {
+		m.Permissions = types.ObjectNull(UserPermissions{}.GetType().AttributeTypes())
+	}
+}
+
+func (m *UserResource) ToCreateRequest(ctx context.Context, diags *diag.Diagnostics) *nginxproxymanager.CreateUserRequest {
+	request := nginxproxymanager.NewCreateUserRequest(
+		m.Name.ValueString(),
+		m.Nickname.ValueString(),
+		m.Email.ValueString(),
+	)
+
+	request.SetIsDisabled(m.IsDisabled.ValueBool())
+	if m.IsAdmin.ValueBool() {
+		request.SetRoles([]string{"admin"})
+	} else {
+		request.SetRoles([]string{})
+	}
+
+	return request
+}
+
+func (m *UserResource) ToUpdateRequest(ctx context.Context, diags *diag.Diagnostics) *nginxproxymanager.UpdateUserRequest {
+	request := nginxproxymanager.NewUpdateUserRequest()
+	request.SetName(m.Name.ValueString())
+	request.SetNickname(m.Nickname.ValueString())
+	request.SetEmail(m.Email.ValueString())
+	request.SetIsDisabled(m.IsDisabled.ValueBool())
+	if m.IsAdmin.ValueBool() {
+		request.SetRoles([]string{"admin"})
+	} else {
+		request.SetRoles([]string{})
+	}
+
+	return request
+}

internal/provider/provider.go

@@ -187,6 +187,7 @@ func (p *NginxProxyManagerProvider) Resources(ctx context.Context) []func() reso
 		NewRedirectionHostResource,
 		NewSettingsResource,
 		NewStreamResource,
+		NewUserResource,
 	}
 }