Added - Support for Zero Trust Packet Routing

Author: Girish Jambagi

examples/zpr/main.tf

@@ -0,0 +1,93 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+variable "tenancy_ocid" {}
+variable "user_ocid" {}
+variable "fingerprint" {}
+variable "private_key_path" {}
+variable "region" {}
+variable "compartment_id" {}
+
+variable "configuration_defined_tags" {
+  default = {}
+}
+
+variable "configuration_freeform_tags" {
+  default = { "Department" = "Finance" }
+}
+
+variable "configuration_zpr_status" {
+  default = "ENABLED"
+}
+
+variable "zpr_policy_description" {
+  default = "description"
+}
+
+variable "zpr_policy_defined_tags" {
+  default = {}
+}
+
+variable "zpr_policy_freeform_tags" {
+  default = { "Department" = "Finance" }
+}
+
+variable "zpr_policy_name" {
+  default = "name"
+}
+
+variable "zpr_policy_state" {
+  default = "ACTIVE"
+}
+
+variable "zpr_policy_statements" {
+  default = []
+}
+
+provider "oci" {
+  tenancy_ocid     = var.tenancy_ocid
+  user_ocid        = var.user_ocid
+  fingerprint      = var.fingerprint
+  private_key_path = var.private_key_path
+  region           = var.region
+}
+
+resource "oci_zpr_configuration" "test_configuration" {
+  #Required
+  compartment_id = var.tenancy_ocid
+
+  #Optional
+  defined_tags  = var.configuration_defined_tags
+  freeform_tags = var.configuration_freeform_tags
+}
+
+data "oci_zpr_configuration" "test_configuration" {
+  #Required
+  compartment_id = var.tenancy_ocid
+}
+
+resource "oci_zpr_zpr_policy" "test_zpr_policy" {
+  #Required
+  compartment_id = var.tenancy_ocid
+  description    = var.zpr_policy_description
+  name           = var.zpr_policy_name
+  statements     = var.zpr_policy_statements
+
+  #Optional
+  defined_tags  = var.zpr_policy_defined_tags
+  freeform_tags = var.zpr_policy_freeform_tags
+}
+
+data "oci_zpr_zpr_policies" "test_zpr_policies" {
+  #Required
+  compartment_id = var.tenancy_ocid
+
+  #Optional
+  name  = var.zpr_policy_name
+  state = var.zpr_policy_state
+}
+
+data "oci_zpr_zpr_policy" "test_zpr_policy" {
+	#Required
+	zpr_policy_id = oci_zpr_zpr_policy.test_zpr_policy.id
+}

internal/client/zpr_clients.go

@@ -0,0 +1,34 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package client
+
+import (
+	oci_zpr "github.com/oracle/oci-go-sdk/v65/zpr"
+
+	oci_common "github.com/oracle/oci-go-sdk/v65/common"
+)
+
+func init() {
+	RegisterOracleClient("oci_zpr.ZprClient", &OracleClient{InitClientFn: initZprZprClient})
+}
+
+func initZprZprClient(configProvider oci_common.ConfigurationProvider, configureClient ConfigureClient, serviceClientOverrides ServiceClientOverrides) (interface{}, error) {
+	client, err := oci_zpr.NewZprClientWithConfigurationProvider(configProvider)
+	if err != nil {
+		return nil, err
+	}
+	err = configureClient(&client.BaseClient)
+	if err != nil {
+		return nil, err
+	}
+
+	if serviceClientOverrides.HostUrlOverride != "" {
+		client.Host = serviceClientOverrides.HostUrlOverride
+	}
+	return &client, nil
+}
+
+func (m *OracleClients) ZprClient() *oci_zpr.ZprClient {
+	return m.GetClient("oci_zpr.ZprClient").(*oci_zpr.ZprClient)
+}

internal/integrationtest/zpr_configuration_test.go

@@ -0,0 +1,133 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package integrationtest
+
+import (
+	"fmt"
+	"strconv"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/terraform"
+	"github.com/oracle/terraform-provider-oci/internal/resourcediscovery"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/oracle/terraform-provider-oci/httpreplay"
+	"github.com/oracle/terraform-provider-oci/internal/acctest"
+	"github.com/oracle/terraform-provider-oci/internal/utils"
+)
+
+var (
+	ignoreChangesZprConfigurationRepresentation = map[string]interface{}{
+		"ignore_changes": acctest.Representation{RepType: acctest.Required, Create: []string{"defined_tags", "freeform_tags", "system_tags"}},
+	}
+
+	ZprConfigurationRequiredOnlyResource = ZprConfigurationResourceDependencies +
+		acctest.GenerateResourceFromRepresentationMap("oci_zpr_configuration", "test_configuration", acctest.Required, acctest.Create, ZprConfigurationRepresentation)
+
+	ZprConfigurationResourceConfig = ZprConfigurationResourceDependencies +
+		acctest.GenerateResourceFromRepresentationMap("oci_zpr_configuration", "test_configuration", acctest.Optional, acctest.Update, ZprConfigurationRepresentation)
+
+	ZprConfigurationSingularDataSourceRepresentation = map[string]interface{}{
+		"compartment_id": acctest.Representation{RepType: acctest.Required, Create: `${var.tenancy_ocid}`},
+	}
+
+	ZprConfigurationRepresentation = map[string]interface{}{
+		"compartment_id": acctest.Representation{RepType: acctest.Required, Create: `${var.tenancy_ocid}`},
+		"defined_tags":   acctest.Representation{RepType: acctest.Required, Create: `${map("${oci_identity_tag_namespace.tag-namespace1.name}.${oci_identity_tag.tag1.name}", "value")}`, Update: `${map("${oci_identity_tag_namespace.tag-namespace1.name}.${oci_identity_tag.tag1.name}", "updatedValue")}`},
+		"freeform_tags":  acctest.Representation{RepType: acctest.Required, Create: map[string]string{"Department": "Finance"}, Update: map[string]string{"Department": "Accounting"}},
+		"lifecycle":      acctest.RepresentationGroup{RepType: acctest.Required, Group: ignoreChangesZprConfigurationRepresentation},
+	}
+
+	ZprConfigurationResourceDependencies = DefinedTagsDependencies
+)
+
+// issue-routing-tag: zpr/default
+func TestZprConfigurationResource_basic(t *testing.T) {
+	httpreplay.SetScenario("TestZprConfigurationResource_basic")
+	defer httpreplay.SaveScenario()
+
+	config := acctest.ProviderTestConfig()
+
+	compartmentId := utils.GetEnvSettingWithBlankDefault("compartment_ocid")
+	compartmentIdVariableStr := fmt.Sprintf("variable \"compartment_id\" { default = \"%s\" }\n", compartmentId)
+	tenancyId := utils.GetEnvSettingWithBlankDefault("tenancy_ocid")
+
+	resourceName := "oci_zpr_configuration.test_configuration"
+	singularDatasourceName := "data.oci_zpr_configuration.test_configuration"
+
+	// Save TF content to Create resource with optional properties. This has to be exactly the same as the config part in the "create with optionals" step in the test.
+	acctest.SaveConfigContent(config+compartmentIdVariableStr+ZprConfigurationResourceDependencies+
+		acctest.GenerateResourceFromRepresentationMap("oci_zpr_configuration", "test_configuration", acctest.Optional, acctest.Create, ZprConfigurationRepresentation), "zpr", "configuration", t)
+
+	acctest.ResourceTest(t, nil, []resource.TestStep{
+		// Configuration can only be created once
+		// verify Create
+		{
+			Config: config + compartmentIdVariableStr + ZprConfigurationResourceDependencies +
+				acctest.GenerateResourceFromRepresentationMap("oci_zpr_configuration", "test_configuration", acctest.Required, acctest.Create, ZprConfigurationRepresentation),
+			Check: acctest.ComposeAggregateTestCheckFuncWrapper(
+				resource.TestCheckResourceAttr(resourceName, "compartment_id", tenancyId),
+				resource.TestCheckResourceAttr(singularDatasourceName, "freeform_tags.%", "1"),
+				resource.TestCheckResourceAttrSet(resourceName, "id"),
+				resource.TestCheckResourceAttrSet(resourceName, "state"),
+				resource.TestCheckResourceAttrSet(resourceName, "time_created"),
+				resource.TestCheckResourceAttrSet(resourceName, "time_updated"),
+				resource.TestCheckResourceAttr(resourceName, "zpr_status", "ENABLED"),
+
+				func(s *terraform.State) (err error) {
+					resId, err := acctest.FromInstanceState(s, resourceName, "id")
+					if isEnableExportCompartment, _ := strconv.ParseBool(utils.GetEnvSettingWithDefault("enable_export_compartment", "true")); isEnableExportCompartment {
+						if errExport := resourcediscovery.TestExportCompartmentWithResourceName(&resId, &compartmentId, resourceName); errExport != nil {
+							return errExport
+						}
+					}
+					return err
+				},
+			),
+		},
+
+		// verify singular datasource
+		{
+			Config: config +
+				acctest.GenerateDataSourceFromRepresentationMap("oci_zpr_configuration", "test_configuration", acctest.Required, acctest.Create, ZprConfigurationSingularDataSourceRepresentation) +
+				compartmentIdVariableStr + ZprConfigurationResourceConfig,
+			Check: acctest.ComposeAggregateTestCheckFuncWrapper(
+				resource.TestCheckResourceAttr(singularDatasourceName, "compartment_id", tenancyId),
+				// TODO: Service bug - Tags are not returned in GET call - DATASEC-3045
+				//resource.TestCheckResourceAttr(singularDatasourceName, "freeform_tags.%", "1"),
+				resource.TestCheckResourceAttrSet(singularDatasourceName, "id"),
+				resource.TestCheckResourceAttrSet(singularDatasourceName, "state"),
+				resource.TestCheckResourceAttrSet(singularDatasourceName, "time_created"),
+				resource.TestCheckResourceAttrSet(singularDatasourceName, "time_updated"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "zpr_status", "ENABLED"),
+			),
+		},
+
+		// verify resource import
+		{
+			Config:                  config + ZprConfigurationRequiredOnlyResource,
+			ImportState:             true,
+			ImportStateIdFunc:       getZprConfigurationConfigurationId(resourceName),
+			ImportStateVerify:       true,
+			ImportStateVerifyIgnore: []string{"defined_tags", "freeform_tags"},
+			ResourceName:            resourceName,
+		},
+
+		// delete
+		{
+			Config: config + compartmentIdVariableStr + ZprConfigurationResourceDependencies,
+		},
+	})
+}
+
+func getZprConfigurationConfigurationId(resourceName string) resource.ImportStateIdFunc {
+	return func(s *terraform.State) (string, error) {
+		rs, ok := s.RootModule().Resources[resourceName]
+		if !ok {
+			return "", fmt.Errorf("not found: %s", resourceName)
+		}
+
+		return fmt.Sprintf("%s/%s", rs.Primary.Attributes["compartment_id"], rs.Primary.Attributes["id"]), nil
+	}
+}