Added - Support for ScanProxy in Data Flow

Author: Terraform Team Automation

examples/dataflow/main.tf

@@ -96,6 +96,7 @@ resource "oci_dataflow_application" "tf_application" {
   #logs_bucket_uri = var.application_logs_bucket_uri}"
   type             = "BATCH"
   archive_uri = var.application_archive_uri
+  logs_bucket_uri = var.dataflow_logs_bucket_uri
   #parameters {
   #Required
   #name  = var.application_parameters_name}"
@@ -159,7 +160,11 @@ resource "oci_dataflow_private_endpoint" "test_private_endpoint" {
   description    = "description"
   display_name   = "pe_name"
   dns_zones      = ["custpvtsubnet.oraclevcn.com"]
-
+  scan_details {
+    #Optional
+    fqdn = "scan.test.com"
+    port = "1521"
+  }
   freeform_tags = {
     "Department" = "Finance"
   }
@@ -348,6 +353,7 @@ resource "oci_dataflow_application" "test_application_submit" {
   archive_uri    = var.application_archive_uri
   private_endpoint_id = oci_dataflow_private_endpoint.test_private_endpoint.id
   metastore_id = var.metastore_id
+  logs_bucket_uri = var.dataflow_logs_bucket_uri
 }
 
 resource "oci_dataflow_invoke_run" "test_invokey_run_submit" {

internal/integrationtest/dataflow_private_endpoint_test.go

@@ -59,6 +59,11 @@ var (
 		"max_host_count": acctest.Representation{RepType: acctest.Optional, Create: `256`, Update: `512`},
 		"nsg_ids":        acctest.Representation{RepType: acctest.Optional, Create: []string{`${oci_core_network_security_group.test_network_security_group.id}`}, Update: []string{}},
 		"lifecycle":      acctest.RepresentationGroup{RepType: acctest.Required, Group: ignoreDefinedTagsChangesForDataFlowResource},
+		"scan_details":   acctest.RepresentationGroup{RepType: acctest.Optional, Group: DataflowPrivateEndpointScanDetailsRepresentation},
+	}
+	DataflowPrivateEndpointScanDetailsRepresentation = map[string]interface{}{
+		"fqdn": acctest.Representation{RepType: acctest.Optional, Create: `scan.test1.com`, Update: `scan.test2.com`},
+		"port": acctest.Representation{RepType: acctest.Optional, Create: `1521`, Update: `1522`},
 	}
 
 	DataflowPrivateEndpointResourceDependencies = acctest.GenerateResourceFromRepresentationMap("oci_core_network_security_group", "test_network_security_group", acctest.Required, acctest.Create, CoreNetworkSecurityGroupRepresentation) +
@@ -125,6 +130,9 @@ func TestDataflowPrivateEndpointResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
 				resource.TestCheckResourceAttr(resourceName, "max_host_count", "256"),
 				resource.TestCheckResourceAttrSet(resourceName, "owner_principal_id"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.#", "1"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.fqdn", "scan.test1.com"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.port", "1521"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
 				resource.TestCheckResourceAttrSet(resourceName, "subnet_id"),
 				resource.TestCheckResourceAttrSet(resourceName, "time_created"),
@@ -158,6 +166,9 @@ func TestDataflowPrivateEndpointResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
 				resource.TestCheckResourceAttr(resourceName, "max_host_count", "256"),
 				resource.TestCheckResourceAttrSet(resourceName, "owner_principal_id"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.#", "1"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.fqdn", "scan.test1.com"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.port", "1521"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
 				resource.TestCheckResourceAttrSet(resourceName, "subnet_id"),
 				resource.TestCheckResourceAttrSet(resourceName, "time_created"),
@@ -186,6 +197,9 @@ func TestDataflowPrivateEndpointResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
 				resource.TestCheckResourceAttr(resourceName, "max_host_count", "512"),
 				resource.TestCheckResourceAttrSet(resourceName, "owner_principal_id"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.#", "1"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.fqdn", "scan.test2.com"),
+				resource.TestCheckResourceAttr(resourceName, "scan_details.0.port", "1522"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
 				resource.TestCheckResourceAttrSet(resourceName, "subnet_id"),
 				resource.TestCheckResourceAttrSet(resourceName, "time_created"),
@@ -230,6 +244,9 @@ func TestDataflowPrivateEndpointResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "id"),
 				resource.TestCheckResourceAttr(singularDatasourceName, "max_host_count", "512"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "owner_user_name"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "scan_details.#", "1"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "scan_details.0.fqdn", "scan.test2.com"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "scan_details.0.port", "1522"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "state"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "time_created"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "time_updated"),

internal/service/dataflow/dataflow_private_endpoint_data_source.go

@@ -104,6 +104,12 @@ func (s *DataflowPrivateEndpointDataSourceCrud) SetData() error {
 		s.D.Set("owner_user_name", *s.Res.OwnerUserName)
 	}
 
+	scanDetails := []interface{}{}
+	for _, item := range s.Res.ScanDetails {
+		scanDetails = append(scanDetails, ScanToMap(item))
+	}
+	s.D.Set("scan_details", scanDetails)
+
 	s.D.Set("state", s.Res.LifecycleState)
 
 	if s.Res.SubnetId != nil {

internal/service/dataflow/dataflow_private_endpoint_resource.go

@@ -87,6 +87,30 @@ func DataflowPrivateEndpointResource() *schema.Resource {
 					Type: schema.TypeString,
 				},
 			},
+			"scan_details": {
+				Type:     schema.TypeList,
+				Optional: true,
+				Computed: true,
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						// Required
+
+						// Optional
+						"fqdn": {
+							Type:     schema.TypeString,
+							Optional: true,
+							Computed: true,
+						},
+						"port": {
+							Type:     schema.TypeString,
+							Optional: true,
+							Computed: true,
+						},
+
+						// Computed
+					},
+				},
+			},
 
 			// Computed
 			"lifecycle_details": {
@@ -247,6 +271,23 @@ func (s *DataflowPrivateEndpointResourceCrud) Create() error {
 		}
 	}
 
+	if scanDetails, ok := s.D.GetOkExists("scan_details"); ok {
+		interfaces := scanDetails.([]interface{})
+		tmp := make([]oci_dataflow.Scan, len(interfaces))
+		for i := range interfaces {
+			stateDataIndex := i
+			fieldKeyFormat := fmt.Sprintf("%s.%d.%%s", "scan_details", stateDataIndex)
+			converted, err := s.mapToScan(fieldKeyFormat)
+			if err != nil {
+				return err
+			}
+			tmp[i] = converted
+		}
+		if len(tmp) != 0 || s.D.HasChange("scan_details") {
+			request.ScanDetails = tmp
+		}
+	}
+
 	if subnetId, ok := s.D.GetOkExists("subnet_id"); ok {
 		tmp := subnetId.(string)
 		request.SubnetId = &tmp
@@ -466,6 +507,23 @@ func (s *DataflowPrivateEndpointResourceCrud) Update() error {
 	tmp := s.D.Id()
 	request.PrivateEndpointId = &tmp
 
+	if scanDetails, ok := s.D.GetOkExists("scan_details"); ok {
+		interfaces := scanDetails.([]interface{})
+		tmp := make([]oci_dataflow.Scan, len(interfaces))
+		for i := range interfaces {
+			stateDataIndex := i
+			fieldKeyFormat := fmt.Sprintf("%s.%d.%%s", "scan_details", stateDataIndex)
+			converted, err := s.mapToScan(fieldKeyFormat)
+			if err != nil {
+				return err
+			}
+			tmp[i] = converted
+		}
+		if len(tmp) != 0 || s.D.HasChange("scan_details") {
+			request.ScanDetails = tmp
+		}
+	}
+
 	request.RequestMetadata.RetryPolicy = tfresource.GetRetryPolicy(s.DisableNotFoundRetries, "dataflow")
 
 	response, err := s.Client.UpdatePrivateEndpoint(context.Background(), request)
@@ -540,6 +598,12 @@ func (s *DataflowPrivateEndpointResourceCrud) SetData() error {
 		s.D.Set("owner_user_name", *s.Res.OwnerUserName)
 	}
 
+	scanDetails := []interface{}{}
+	for _, item := range s.Res.ScanDetails {
+		scanDetails = append(scanDetails, ScanToMap(item))
+	}
+	s.D.Set("scan_details", scanDetails)
+
 	s.D.Set("state", s.Res.LifecycleState)
 
 	if s.Res.SubnetId != nil {
@@ -602,6 +666,12 @@ func PrivateEndpointSummaryToMap(obj oci_dataflow.PrivateEndpointSummary, dataso
 		result["owner_user_name"] = string(*obj.OwnerUserName)
 	}
 
+	scanDetails := []interface{}{}
+	for _, item := range obj.ScanDetails {
+		scanDetails = append(scanDetails, ScanToMap(item))
+	}
+	result["scan_details"] = scanDetails
+
 	result["state"] = string(obj.LifecycleState)
 
 	if obj.SubnetId != nil {
@@ -619,6 +689,36 @@ func PrivateEndpointSummaryToMap(obj oci_dataflow.PrivateEndpointSummary, dataso
 	return result
 }
 
+func (s *DataflowPrivateEndpointResourceCrud) mapToScan(fieldKeyFormat string) (oci_dataflow.Scan, error) {
+	result := oci_dataflow.Scan{}
+
+	if fqdn, ok := s.D.GetOkExists(fmt.Sprintf(fieldKeyFormat, "fqdn")); ok {
+		tmp := fqdn.(string)
+		result.Fqdn = &tmp
+	}
+
+	if port, ok := s.D.GetOkExists(fmt.Sprintf(fieldKeyFormat, "port")); ok {
+		tmp := port.(string)
+		result.Port = &tmp
+	}
+
+	return result, nil
+}
+
+func ScanToMap(obj oci_dataflow.Scan) map[string]interface{} {
+	result := map[string]interface{}{}
+
+	if obj.Fqdn != nil {
+		result["fqdn"] = string(*obj.Fqdn)
+	}
+
+	if obj.Port != nil {
+		result["port"] = string(*obj.Port)
+	}
+
+	return result
+}
+
 func (s *DataflowPrivateEndpointResourceCrud) updateCompartment(compartment interface{}) error {
 	changeCompartmentRequest := oci_dataflow.ChangePrivateEndpointCompartmentRequest{}
 

website/docs/d/dataflow_private_endpoint.html.markdown

@@ -45,6 +45,9 @@ The following attributes are exported:
 * `nsg_ids` - An array of network security group OCIDs. 
 * `owner_principal_id` - The OCID of the user who created the resource. 
 * `owner_user_name` - The username of the user who created the resource.  If the username of the owner does not exist, `null` will be returned and the caller should refer to the ownerPrincipalId value instead. 
+* `scan_details` - An array of fqdn/port pairs used to create private endpoint. Each object is a simple key-value pair with FQDN as key and port number as value. [ { fqdn: "scan1.oracle.com", port: "1521"}, { fqdn: "scan2.oracle.com", port: "1521" } ] 
+	* `fqdn` - A fully-qualified domain name (FQDN). 
+	* `port` - The port number of the FQDN 
 * `state` - The current state of this private endpoint. 
 * `subnet_id` - The OCID of a subnet. 
 * `time_created` - The date and time a application was created, expressed in [RFC 3339](https://tools.ietf.org/html/rfc3339) timestamp format. Example: `2018-04-03T21:10:29.600Z` 

website/docs/d/dataflow_private_endpoints.html.markdown

@@ -61,6 +61,9 @@ The following attributes are exported:
 * `nsg_ids` - An array of network security group OCIDs. 
 * `owner_principal_id` - The OCID of the user who created the resource. 
 * `owner_user_name` - The username of the user who created the resource.  If the username of the owner does not exist, `null` will be returned and the caller should refer to the ownerPrincipalId value instead. 
+* `scan_details` - An array of fqdn/port pairs used to create private endpoint. Each object is a simple key-value pair with FQDN as key and port number as value. [ { fqdn: "scan1.oracle.com", port: "1521"}, { fqdn: "scan2.oracle.com", port: "1521" } ] 
+	* `fqdn` - A fully-qualified domain name (FQDN). 
+	* `port` - The port number of the FQDN 
 * `state` - The current state of this private endpoint. 
 * `subnet_id` - The OCID of a subnet. 
 * `time_created` - The date and time a application was created, expressed in [RFC 3339](https://tools.ietf.org/html/rfc3339) timestamp format. Example: `2018-04-03T21:10:29.600Z` 

website/docs/r/dataflow_private_endpoint.html.markdown

@@ -29,6 +29,12 @@ resource "oci_dataflow_private_endpoint" "test_private_endpoint" {
 	freeform_tags = {"Department"= "Finance"}
 	max_host_count = var.private_endpoint_max_host_count
 	nsg_ids = var.private_endpoint_nsg_ids
+	scan_details {
+
+		#Optional
+		fqdn = var.private_endpoint_scan_details_fqdn
+		port = var.private_endpoint_scan_details_port
+	}
 }
 ```
 
@@ -44,6 +50,9 @@ The following arguments are supported:
 * `freeform_tags` - (Optional) (Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm). Example: `{"Department": "Finance"}` 
 * `max_host_count` - (Optional) (Updatable) The maximum number of hosts to be accessed through the private endpoint. This value is used to calculate the relevant CIDR block and should be a multiple of 256.  If the value is not a multiple of 256, it is rounded up to the next multiple of 256. For example, 300 is rounded up to 512. 
 * `nsg_ids` - (Optional) (Updatable) An array of network security group OCIDs. 
+* `scan_details` - (Optional) (Updatable) An array of fqdn/port pairs used to create private endpoint. Each object is a simple key-value pair with FQDN as key and port number as value. [ { fqdn: "scan1.oracle.com", port: "1521"}, { fqdn: "scan2.oracle.com", port: "1521" } ] 
+	* `fqdn` - (Optional) (Updatable) A fully-qualified domain name (FQDN). 
+	* `port` - (Optional) (Updatable) The port number of the FQDN 
 * `subnet_id` - (Required) The OCID of a subnet. 
 
 
@@ -66,6 +75,9 @@ The following attributes are exported:
 * `nsg_ids` - An array of network security group OCIDs. 
 * `owner_principal_id` - The OCID of the user who created the resource. 
 * `owner_user_name` - The username of the user who created the resource.  If the username of the owner does not exist, `null` will be returned and the caller should refer to the ownerPrincipalId value instead. 
+* `scan_details` - An array of fqdn/port pairs used to create private endpoint. Each object is a simple key-value pair with FQDN as key and port number as value. [ { fqdn: "scan1.oracle.com", port: "1521"}, { fqdn: "scan2.oracle.com", port: "1521" } ] 
+	* `fqdn` - A fully-qualified domain name (FQDN). 
+	* `port` - The port number of the FQDN 
 * `state` - The current state of this private endpoint. 
 * `subnet_id` - The OCID of a subnet. 
 * `time_created` - The date and time a application was created, expressed in [RFC 3339](https://tools.ietf.org/html/rfc3339) timestamp format. Example: `2018-04-03T21:10:29.600Z`