tencentcloudstack
diff --git a/‎.changelog/2340.txt‎
Lines changed: 11 additions & 0 deletions b/‎.changelog/2340.txt‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎go.mod‎
Lines changed: 2 additions & 2 deletions b/‎go.mod‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎go.sum‎
Lines changed: 4 additions & 0 deletions b/‎go.sum‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎tencentcloud/extension_waf.go‎
Lines changed: 70 additions & 4 deletions b/‎tencentcloud/extension_waf.go‎
Lines changed: 70 additions & 4 deletions
diff --git a/‎tencentcloud/provider.go‎
Lines changed: 2 additions & 0 deletions b/‎tencentcloud/provider.go‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎tencentcloud/resource_tc_waf_clb_instance.go‎
Lines changed: 98 additions & 20 deletions b/‎tencentcloud/resource_tc_waf_clb_instance.go‎
Lines changed: 98 additions & 20 deletions
@@ -0,0 +1,11 @@
+```release-note:new-resource
+tencentcloud_waf_modify_access_period
+```
+
+```release-note:enhancement
+tencentcloud_waf_clb_instance: Support set `bot_management` and `api_security`.
+```
+
+```release-note:enhancement
+tencentcloud_waf_saas_instance: Support set `bot_management` and `api_security`.
+```
@@ -46,7 +46,7 @@ require (
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/clb v1.0.693
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cloudaudit v1.0.544
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cls v1.0.711
-	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.800
+	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.802
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.624
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cwp v1.0.762
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cynosdb v1.0.692
@@ -97,7 +97,7 @@ require (
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/tsf v1.0.674
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vod v1.0.199
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vpc v1.0.779
-	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.799
+	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.802
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/wedata v1.0.792
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/wss v1.0.199
 	github.com/tencentyun/cos-go-sdk-v5 v0.7.42-0.20230629101357-7edd77448a0f
 
@@ -881,6 +881,8 @@ github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.798/go.mod
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.799/go.mod h1:r5r4xbfxSaeR04b166HGsBa/R4U3SueirEUpXGuw+Q0=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.800 h1:sQFdr2aQz+Z3wxI0BC0+yKQXwlo7q26u+yyPJcAuga4=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.800/go.mod h1:r5r4xbfxSaeR04b166HGsBa/R4U3SueirEUpXGuw+Q0=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.802 h1:Oxtoc+JC1CjCcLJbmw9AWspiG8184A9CWFe1mujWoW8=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.802/go.mod h1:r5r4xbfxSaeR04b166HGsBa/R4U3SueirEUpXGuw+Q0=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.624 h1:nEZqsoqt1pEoaP9JjkHQy3/H00suCfzlHW1qOm2nYD8=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.624/go.mod h1:+TXSVyeKwt1IhZRqKPbTREteBcP+K07Q846/ilNzLWA=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cwp v1.0.762 h1:2egy69SP/wPsmnfozcQVZ6tUY6F6N/TpEe/7xtXrc/8=
@@ -987,6 +989,8 @@ github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vpc v1.0.779 h1:4NpjQiF
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vpc v1.0.779/go.mod h1:kYBG2jgpjL7CuhYM+K1fkEtbWvNXrtt7NSLwXVCqmKA=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.799 h1:4RBEIK1t30g8VUTkU8KiE756Bq4O+ABUWYA1YoYpkZc=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.799/go.mod h1:y0QoatwZugI17brN5IRUBtwpPtWajnkZPbulNUxtcwg=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.802 h1:ezxDJsbS0shcpDmyyxbPS3hxp92r9lujsj1/vr5tZXk=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/waf v1.0.802/go.mod h1:yX7LqAVM/vOt7bGz4AaFEQEJVfp0uJ5W6eEUCzsMXOI=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/wedata v1.0.792 h1:NLgKNOIHWa38AmW7dyfI9Jlcp2Kr9VRD94f48pPNmxM=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/wedata v1.0.792/go.mod h1:Xz6vPV3gHlzPwtEcmWdWO1EUXJDgn2p7UMCXbJiVioQ=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/wss v1.0.199 h1:hMBLtiJPnZ9GvA677cTB6ELBR6B68wCR2QY1sNoGQc4=
 
@@ -415,6 +415,40 @@ var LABEL_TYPES_CLB = map[string]string{
 	WAF_ULTIMATE_CLB:   "sv_wsm_waf_package_ultimate_clb",
 }
 
+var BOT_MANAGEMENT_LABEL_TYPES_CLB = map[int]string{
+	REGION_ID_MAINLAND:     "sv_wsm_waf_scene_bot_protection_clb",
+	REGION_ID_NON_MAINLAND: "sv_wsm_waf_scene_bot_protection_clb_intl",
+}
+
+var BOT_MANAGEMENT_LABEL_TYPES_SAAS = map[int]string{
+	REGION_ID_MAINLAND:     "sv_wsm_waf_scene_bot_protection",
+	REGION_ID_NON_MAINLAND: "sv_wsm_waf_scene_bot_protection_intl",
+}
+
+var API_SECURITY_LABEL_TYPES_CLB_REGION1 = map[string]string{
+	WAF_PREMIUM_CLB:    "sv_wsm_waf_scene_cpre",
+	WAF_ENTERPRISE_CLB: "sv_wsm_waf_scene_cent",
+	WAF_ULTIMATE_CLB:   "sv_wsm_waf_scene_cult",
+}
+
+var API_SECURITY_LABEL_TYPES_CLB_REGION9 = map[string]string{
+	WAF_PREMIUM_CLB:    "sv_wsm_waf_scene_cipre",
+	WAF_ENTERPRISE_CLB: "sv_wsm_waf_scene_cient",
+	WAF_ULTIMATE_CLB:   "sv_wsm_waf_scene_ciult",
+}
+
+var API_SECURITY_LABEL_TYPES_SAAS_REGION1 = map[string]string{
+	WAF_PREMIUM_SAAS:    "sv_wsm_waf_scene_pre",
+	WAF_ENTERPRISE_SAAS: "sv_wsm_waf_scene_ent",
+	WAF_ULTIMATE_SAAS:   "sv_wsm_waf_scene_ult",
+}
+
+var API_SECURITY_LABEL_TYPES_SAAS_REGION9 = map[string]string{
+	WAF_PREMIUM_SAAS:    "sv_wsm_waf_scene_ipre",
+	WAF_ENTERPRISE_SAAS: "sv_wsm_waf_scene_ient",
+	WAF_ULTIMATE_SAAS:   "sv_wsm_waf_scene_iult",
+}
+
 var WAF_CATEGORY_ID_CLB = map[string]int{
 	WAF_PREMIUM_CLB:    101198,
 	WAF_ENTERPRISE_CLB: 101204,
@@ -478,10 +512,22 @@ const (
 )
 
 const (
-	DOMIAN_CATEGORY_ID_CLB      = 101207
-	DOMAIN_SUB_PRODUCT_CODE_CLB = "sp_wsm_waf_domain_clb"
-	DOMAIN_PID_CLB              = 1001156
-	DOMAIN_LABEL_TYPE_CLB       = "sv_wsm_waf_domain_clb"
+	DOMIAN_CATEGORY_ID_CLB               = 101207
+	DOMAIN_SUB_PRODUCT_CODE_CLB          = "sp_wsm_waf_domain_clb"
+	DOMAIN_PID_CLB                       = 1001156
+	DOMAIN_LABEL_TYPE_CLB                = "sv_wsm_waf_domain_clb"
+	BOT_MANAGEMENT_CATEGORY_ID_CLB       = 1025567
+	BOT_MANAGEMENT_SUB_PRODUCT_CODE_CLB  = "sp_wsm_waf_bot_protection_clb"
+	BOT_MANAGEMENT_PID_CLB               = 1017001
+	API_SECURITY_CATEGORY_ID_CLB         = 1027183
+	API_SECURITY_SUB_PRODUCT_CODE_CLB    = "sp_wsm_waf_apiclb"
+	API_SECURITY_PID_CLB                 = 1028166
+	BOT_MANAGEMENT_CATEGORY_ID_SAAS      = 1025564
+	BOT_MANAGEMENT_SUB_PRODUCT_CODE_SAAS = "sp_wsm_waf_bot_protection"
+	BOT_MANAGEMENT_PID_SAAS              = 1016997
+	API_SECURITY_CATEGORY_ID_SAAS        = 1027180
+	API_SECURITY_SUB_PRODUCT_CODE_SAAS   = "sp_wsm_waf_api"
+	API_SECURITY_PID_SAAS                = 1028161
 )
 
 const (
@@ -658,3 +704,23 @@ var ANTI_INFO_LEAK_RULE_STATUS = []int{
 	ANTI_INFO_LEAK_RULE_STATUS_0,
 	ANTI_INFO_LEAK_RULE_STATUS_1,
 }
+
+const (
+	BOT_MANAGEMENT_STATUS_0 = 0
+	BOT_MANAGEMENT_STATUS_1 = 1
+)
+
+var BOT_MANAGEMENT_STATUS = []int{
+	BOT_MANAGEMENT_STATUS_0,
+	BOT_MANAGEMENT_STATUS_1,
+}
+
+const (
+	API_SECURITY_STATUS_0 = 0
+	API_SECURITY_STATUS_1 = 1
+)
+
+var API_SECURITY_STATUS = []int{
+	API_SECURITY_STATUS_0,
+	API_SECURITY_STATUS_1,
+}
@@ -1993,6 +1993,7 @@ Web Application Firewall(WAF)
     tencentcloud_waf_cc_auto_status
     tencentcloud_waf_cc_session
     tencentcloud_waf_ip_access_control
+    tencentcloud_waf_modify_access_period
 
 Wedata
   Data Source
@@ -3824,6 +3825,7 @@ func Provider() *schema.Provider {
 			"tencentcloud_waf_cc_auto_status":                                  resourceTencentCloudWafCcAutoStatus(),
 			"tencentcloud_waf_cc_session":                                      resourceTencentCloudWafCcSession(),
 			"tencentcloud_waf_ip_access_control":                               resourceTencentCloudWafIpAccessControl(),
+			"tencentcloud_waf_modify_access_period":                            resourceTencentCloudWafModifyAccessPeriod(),
 			"tencentcloud_wedata_rule_template":                                resourceTencentCloudWedataRuleTemplate(),
 			"tencentcloud_wedata_datasource":                                   resourceTencentCloudWedataDatasource(),
 			"tencentcloud_wedata_function":                                     resourceTencentCloudWedataFunction(),
 
@@ -24,6 +24,8 @@ resource "tencentcloud_waf_clb_instance" "example" {
   time_unit       = "m"
   auto_renew_flag = 1
   elastic_mode    = 1
+  bot_management  = 1
+  api_security    = 1
 }
 ```
 
@@ -38,6 +40,8 @@ resource "tencentcloud_waf_clb_instance" "example" {
   auto_renew_flag = 1
   elastic_mode    = 1
   qps_limit       = 200000
+  bot_management  = 1
+  api_security    = 1
 }
 ```
 */
@@ -109,6 +113,20 @@ func resourceTencentCloudWafClbInstance() *schema.Resource {
 				ValidateFunc: validateIntegerMin(10000),
 				Description:  "QPS Limit, Minimum setting 10000. Only `elastic_mode` is 1, can be set.",
 			},
+			"bot_management": {
+				Optional:     true,
+				Type:         schema.TypeInt,
+				Default:      BOT_MANAGEMENT_STATUS_0,
+				ValidateFunc: validateAllowedIntValue(BOT_MANAGEMENT_STATUS),
+				Description:  "Whether to purchase Bot management, 1: yes, 0: no. Default is 0.",
+			},
+			"api_security": {
+				Optional:     true,
+				Type:         schema.TypeInt,
+				Default:      API_SECURITY_STATUS_0,
+				ValidateFunc: validateAllowedIntValue(API_SECURITY_STATUS),
+				Description:  "Whether to purchase API Security, 1: yes, 0: no. Default is 0.",
+			},
 			//"domain_pkg_count": {
 			//	Optional:     true,
 			//	Type:         schema.TypeInt,
@@ -142,11 +160,6 @@ func resourceTencentCloudWafClbInstance() *schema.Resource {
 				Type:        schema.TypeString,
 				Description: "waf instance valid time.",
 			},
-			"api_security": {
-				Computed:    true,
-				Type:        schema.TypeInt,
-				Description: "waf instance api security status.",
-			},
 			"status": {
 				Computed:    true,
 				Type:        schema.TypeInt,
@@ -161,12 +174,13 @@ func resourceTencentCloudWafClbInstanceCreate(d *schema.ResourceData, meta inter
 	defer inconsistentCheck(d, meta)()
 
 	var (
-		logId        = getLogId(contextNil)
-		request      = waf.NewGenerateDealsAndPayNewRequest()
-		response     = waf.NewGenerateDealsAndPayNewResponse()
-		client       = meta.(*TencentCloudClient).apiV3Conn
-		instanceId   string
-		mainlandMode int
+		logId         = getLogId(contextNil)
+		request       = waf.NewGenerateDealsAndPayNewRequest()
+		response      = waf.NewGenerateDealsAndPayNewResponse()
+		client        = meta.(*TencentCloudClient).apiV3Conn
+		instanceId    string
+		mainlandMode  int
+		goodsCategory string
 	)
 
 	region := client.Region
@@ -187,7 +201,7 @@ func resourceTencentCloudWafClbInstanceCreate(d *schema.ResourceData, meta inter
 	instanceGoodDetail := new(waf.GoodsDetailNew)
 	instanceGood.GoodsNum = helper.IntInt64(1)
 	if v, ok := d.GetOk("goods_category"); ok {
-		goodsCategory := v.(string)
+		goodsCategory = v.(string)
 		goodsCategoryId := int64(WAF_CATEGORY_ID_CLB[goodsCategory])
 		subProductCode := SUB_PRODUCT_CODE_CLB[goodsCategory]
 		labelTypes := LABEL_TYPES_CLB[goodsCategory]
@@ -221,7 +235,63 @@ func resourceTencentCloudWafClbInstanceCreate(d *schema.ResourceData, meta inter
 	instanceGood.GoodsDetail = instanceGoodDetail
 	goods = append(goods, instanceGood)
 
-	//// make domain pkg
+	// bot management
+	if v, ok := d.GetOkExists("bot_management"); ok {
+		if v.(int) == 1 {
+			botManagementGood := new(waf.GoodNews)
+			botManagementDetail := new(waf.GoodsDetailNew)
+			botManagementGood.GoodsCategoryId = helper.IntInt64(BOT_MANAGEMENT_CATEGORY_ID_CLB)
+			botManagementGood.GoodsNum = helper.IntInt64(1)
+			botManagementDetail.SubProductCode = helper.String(BOT_MANAGEMENT_SUB_PRODUCT_CODE_CLB)
+			botManagementDetail.Pid = helper.IntInt64(BOT_MANAGEMENT_PID_CLB)
+			botManagementDetail.LabelTypes = helper.Strings([]string{BOT_MANAGEMENT_LABEL_TYPES_CLB[mainlandMode]})
+			botManagementDetail.LabelCounts = []*int64{helper.IntInt64(1)}
+
+			if v, ok := d.GetOkExists("time_span"); ok {
+				botManagementDetail.TimeSpan = helper.IntInt64(v.(int))
+			}
+
+			if v, ok := d.GetOk("time_unit"); ok {
+				botManagementDetail.TimeUnit = helper.String(v.(string))
+			}
+
+			botManagementGood.RegionId = helper.IntInt64(mainlandMode)
+			botManagementGood.GoodsDetail = botManagementDetail
+			goods = append(goods, botManagementGood)
+		}
+	}
+
+	// api security
+	if v, ok := d.GetOkExists("api_security"); ok {
+		if v.(int) == 1 {
+			apiSecurityGood := new(waf.GoodNews)
+			apiSecurityDetail := new(waf.GoodsDetailNew)
+			apiSecurityGood.GoodsCategoryId = helper.IntInt64(API_SECURITY_CATEGORY_ID_CLB)
+			apiSecurityGood.GoodsNum = helper.IntInt64(1)
+			apiSecurityDetail.SubProductCode = helper.String(API_SECURITY_SUB_PRODUCT_CODE_CLB)
+			apiSecurityDetail.Pid = helper.IntInt64(API_SECURITY_PID_CLB)
+			if mainlandMode == REGION_ID_1 {
+				apiSecurityDetail.LabelTypes = helper.Strings([]string{API_SECURITY_LABEL_TYPES_CLB_REGION1[goodsCategory]})
+			} else {
+				apiSecurityDetail.LabelTypes = helper.Strings([]string{API_SECURITY_LABEL_TYPES_CLB_REGION9[goodsCategory]})
+			}
+			apiSecurityDetail.LabelCounts = []*int64{helper.IntInt64(1)}
+
+			if v, ok := d.GetOkExists("time_span"); ok {
+				apiSecurityDetail.TimeSpan = helper.IntInt64(v.(int))
+			}
+
+			if v, ok := d.GetOk("time_unit"); ok {
+				apiSecurityDetail.TimeUnit = helper.String(v.(string))
+			}
+
+			apiSecurityGood.RegionId = helper.IntInt64(mainlandMode)
+			apiSecurityGood.GoodsDetail = apiSecurityDetail
+			goods = append(goods, apiSecurityGood)
+		}
+	}
+
+	// make domain pkg
 	//if v, ok := d.GetOkExists("domain_pkg_count"); ok {
 	//	domainPkgGood := new(waf.GoodNews)
 	//	domainPkgGoodDetail := new(waf.GoodsDetailNew)
@@ -248,8 +318,8 @@ func resourceTencentCloudWafClbInstanceCreate(d *schema.ResourceData, meta inter
 	//	domainPkgGood.GoodsDetail = domainPkgGoodDetail
 	//	goods = append(goods, domainPkgGood)
 	//}
-	//
-	//// make qps pkg
+
+	// make qps pkg
 	//if v, ok := d.GetOkExists("qps_pkg_count"); ok {
 	//	qpsPkgGood := new(waf.GoodNews)
 	//	qpsPkgGoodDetail := new(waf.GoodsDetailNew)
@@ -400,6 +470,18 @@ func resourceTencentCloudWafClbInstanceRead(d *schema.ResourceData, meta interfa
 		_ = d.Set("qps_limit", instanceInfo.ElasticBilling)
 	}
 
+	if instanceInfo.BotPkg != nil {
+		_ = d.Set("bot_management", instanceInfo.BotPkg.Status)
+	} else {
+		_ = d.Set("bot_management", 0)
+	}
+
+	if instanceInfo.ApiPkg != nil {
+		_ = d.Set("api_security", instanceInfo.ApiPkg.Status)
+	} else {
+		_ = d.Set("api_security", 0)
+	}
+
 	//if instanceInfo.DomainPkg != nil {
 	//	_ = d.Set("domain_pkg_count", instanceInfo.DomainPkg.Count)
 	//}
@@ -421,10 +503,6 @@ func resourceTencentCloudWafClbInstanceRead(d *schema.ResourceData, meta interfa
 		_ = d.Set("valid_time", instanceInfo.ValidTime)
 	}
 
-	if instanceInfo.APISecurity != nil {
-		_ = d.Set("api_security", instanceInfo.APISecurity)
-	}
-
 	if instanceInfo.Status != nil {
 		_ = d.Set("status", instanceInfo.Status)
 	}
@@ -445,7 +523,7 @@ func resourceTencentCloudWafClbInstanceUpdate(d *schema.ResourceData, meta inter
 		elasticMode                    int
 	)
 
-	immutableArgs := []string{"goods_category", "time_span", "time_unit", "domain_pkg_count", "qps_pkg_count"}
+	immutableArgs := []string{"goods_category", "time_span", "time_unit", "domain_pkg_count", "qps_pkg_count", "bot_management", "api_security"}
 
 	for _, v := range immutableArgs {
 		if d.HasChange(v) {