refactor: in tencentcloud_kubernetes_node_pool

Author: xawei

.changelog/1545.txt

@@ -1,3 +1,3 @@
 ```release-note:enhancement
-resource/tencentcloud_kubernetes_node_pool: make enhanced_security_service in tencentcloud_kubernetes_node_pool not forceNew
+resource/tencentcloud_kubernetes_node_pool: adjust enhanced_security_service to not forceNew.
 ```

tencentcloud/internal/helper/transform.go

@@ -235,6 +235,17 @@ func StrListToStr(strList []*string) string {
 	return base64.StdEncoding.EncodeToString([]byte(res))
 }
 
+func StrListValToStr(strListVal []string) string {
+	res := ""
+	for i, v := range strListVal {
+		res += v
+		if i < len(strListVal)-1 {
+			res += ";"
+		}
+	}
+	return base64.StdEncoding.EncodeToString([]byte(res))
+}
+
 func StrToStrList(str string) (res []string, err error) {
 
 	decodeString, err := base64.StdEncoding.DecodeString(str)

tencentcloud/resource_tc_kubernetes_node_pool.go

@@ -153,8 +153,6 @@ import (
 	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
 	as "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/as/v20180419"
 	sdkErrors "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/errors"
-	cwp "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cwp/v20180228"
-	tat "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/tat/v20201028"
 	tke "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/tke/v20180525"
 	"github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/internal/helper"
 )
@@ -1388,73 +1386,77 @@ func resourceKubernetesNodePoolUpdate(d *schema.ResourceData, meta interface{})
 			return err
 		}
 
-		// step 2: change existed cvm security service if necessary
-		workersInsIdOfNodePool := make([]string, 0)
-		_, workers, err := service.DescribeClusterInstances(ctx, clusterId)
-		if err != nil {
+		// change existed cvm security service if necessary
+		if err := ModifySecurityServiceOfCvmInNodePool(ctx, d, &service, &cvmService, client, clusterId, *nodePool.NodePoolId); err != nil {
 			return err
 		}
-		for _, worker := range workers {
-			if worker.NodePoolId != "" && worker.NodePoolId == *nodePool.NodePoolId {
-				workersInsIdOfNodePool = append(workersInsIdOfNodePool, worker.InstanceId)
-			}
-		}
-
-		if d.HasChange("auto_scaling_config.0.enhanced_security_service") {
-			const BatchProcessedInsLimit = 100 // limit 100 items to change each request
-			launchConfigRaw := d.Get("auto_scaling_config").([]interface{})
-			dMap := launchConfigRaw[0].(map[string]interface{})
-
-			if v, ok := dMap["enhanced_security_service"]; ok && !v.(bool) {
-				// uninstall, cwp/DeleteMachine, need uuid
-				// https://cloud.tencent.com/document/product/296/19844
-				for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
-					var reqInstanceIds []string
-					if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
-						reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
-					} else {
-						reqInstanceIds = workersInsIdOfNodePool[i:]
-					}
-					// get uuid
-					instanceSet, err := cvmService.DescribeInstanceSetByIds(ctx, helper.StrListToStr(helper.StringsStringsPoint(reqInstanceIds)))
-					if err != nil {
-						return err
-					}
-					// call cwp/DeleteMachine
-					for _, ins := range instanceSet {
-						requestDeleteMachine := cwp.NewDeleteMachineRequest()
-						requestDeleteMachine.Uuid = ins.Uuid
-						if _, err := client.UseCwpClient().DeleteMachine(requestDeleteMachine); err != nil {
-							return err
-						}
-					}
-				}
-			} else {
-				// default is true, install security agent
-				// tat/InvokeCommand, CommandId=cmd-d8jj2skv, instanceId is enough
-				// https://cloud.tencent.com/document/product/1340/52678
-				for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
-					var reqInstanceIds []string
-					if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
-						reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
-					} else {
-						reqInstanceIds = workersInsIdOfNodePool[i:]
-					}
-					requestInvokeCommand := tat.NewInvokeCommandRequest()
-					requestInvokeCommand.InstanceIds = helper.StringsStringsPoint(reqInstanceIds)
-					requestInvokeCommand.CommandId = helper.String(InstallSecurityAgentCommandId)
-					requestInvokeCommand.Parameters = helper.String("{}")
-					requestInvokeCommand.Timeout = helper.Uint64(60)
-					_, err := client.UseTatClient().InvokeCommand(requestInvokeCommand)
-					if err != nil {
-						log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
-							logId, request.GetAction(), request.ToJsonString(), err.Error())
-						return err
-					}
-				}
 
-			}
-		}
+		//workersInsIdOfNodePool := make([]string, 0)
+		//_, workers, err := service.DescribeClusterInstances(ctx, clusterId)
+		//if err != nil {
+		//	return err
+		//}
+		//for _, worker := range workers {
+		//	if worker.NodePoolId != "" && worker.NodePoolId == *nodePool.NodePoolId {
+		//		workersInsIdOfNodePool = append(workersInsIdOfNodePool, worker.InstanceId)
+		//	}
+		//}
+
+		//if d.HasChange("auto_scaling_config.0.enhanced_security_service") {
+		//	const BatchProcessedInsLimit = 100 // limit 100 items to change each request
+		//	launchConfigRaw := d.Get("auto_scaling_config").([]interface{})
+		//	dMap := launchConfigRaw[0].(map[string]interface{})
+		//
+		//	if v, ok := dMap["enhanced_security_service"]; ok && !v.(bool) {
+		//		// uninstall, cwp/DeleteMachine, need uuid
+		//		// https://cloud.tencent.com/document/product/296/19844
+		//		for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
+		//			var reqInstanceIds []string
+		//			if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
+		//				reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
+		//			} else {
+		//				reqInstanceIds = workersInsIdOfNodePool[i:]
+		//			}
+		//			// get uuid
+		//			instanceSet, err := cvmService.DescribeInstanceSetByIds(ctx, helper.StrListToStr(helper.StringsStringsPoint(reqInstanceIds)))
+		//			if err != nil {
+		//				return err
+		//			}
+		//			// call cwp/DeleteMachine
+		//			for _, ins := range instanceSet {
+		//				requestDeleteMachine := cwp.NewDeleteMachineRequest()
+		//				requestDeleteMachine.Uuid = ins.Uuid
+		//				if _, err := client.UseCwpClient().DeleteMachine(requestDeleteMachine); err != nil {
+		//					return err
+		//				}
+		//			}
+		//		}
+		//	} else {
+		//		// default is true, install security agent
+		//		// tat/InvokeCommand, CommandId=cmd-d8jj2skv, instanceId is enough
+		//		// https://cloud.tencent.com/document/product/1340/52678
+		//		for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
+		//			var reqInstanceIds []string
+		//			if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
+		//				reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
+		//			} else {
+		//				reqInstanceIds = workersInsIdOfNodePool[i:]
+		//			}
+		//			requestInvokeCommand := tat.NewInvokeCommandRequest()
+		//			requestInvokeCommand.InstanceIds = helper.StringsStringsPoint(reqInstanceIds)
+		//			requestInvokeCommand.CommandId = helper.String(InstallSecurityAgentCommandId)
+		//			requestInvokeCommand.Parameters = helper.String("{}")
+		//			requestInvokeCommand.Timeout = helper.Uint64(60)
+		//			_, err := client.UseTatClient().InvokeCommand(requestInvokeCommand)
+		//			if err != nil {
+		//				log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
+		//					logId, request.GetAction(), request.ToJsonString(), err.Error())
+		//				return err
+		//			}
+		//		}
+		//
+		//	}
+		//}
 		d.SetPartial("auto_scaling_config")
 	}
 

tencentcloud/service_tencentcloud_tke.go

@@ -7,6 +7,8 @@ import (
 	"strings"
 
 	sdkErrors "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/errors"
+	cwp "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cwp/v20180228"
+	tat "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/tat/v20201028"
 
 	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
 
@@ -2389,6 +2391,7 @@ func (me *TkeService) ModifyClusterVirtualNodePool(ctx context.Context, request
 	return
 }
 
+<<<<<<< HEAD
 func (me *TkeService) DescribeClusterVirtualNode(ctx context.Context, clusterId string) (virtualNodes []tke.VirtualNode, errRet error) {
 	logId := getLogId(ctx)
 
@@ -2422,3 +2425,76 @@ func (me *TkeService) DescribeClusterVirtualNode(ctx context.Context, clusterId
 	}
 	return
 }
+
+func ModifySecurityServiceOfCvmInNodePool(ctx context.Context, d *schema.ResourceData, tkeSvc *TkeService, cvmSvc *CvmService, client *connectivity.TencentCloudClient, clusterId string, nodePoolId string) error {
+	logId := getLogId(ctx)
+
+	if d.HasChange("auto_scaling_config.0.enhanced_security_service") {
+		workersInsIdOfNodePool := make([]string, 0)
+		_, workers, err := tkeSvc.DescribeClusterInstances(ctx, clusterId)
+		if err != nil {
+			return err
+		}
+		for _, worker := range workers {
+			if worker.NodePoolId != "" && worker.NodePoolId == nodePoolId {
+				workersInsIdOfNodePool = append(workersInsIdOfNodePool, worker.InstanceId)
+			}
+		}
+
+		const BatchProcessedInsLimit = 100 // limit 100 items to change each request
+		launchConfigRaw := d.Get("auto_scaling_config").([]interface{})
+		dMap := launchConfigRaw[0].(map[string]interface{})
+
+		if v, ok := dMap["enhanced_security_service"]; ok && !v.(bool) {
+			// uninstall, cwp/DeleteMachine, need uuid
+			// https://cloud.tencent.com/document/product/296/19844
+			for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
+				var reqInstanceIds []string
+				if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
+					reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
+				} else {
+					reqInstanceIds = workersInsIdOfNodePool[i:]
+				}
+				// get uuid
+				instanceSet, err := cvmSvc.DescribeInstanceSetByIds(ctx, helper.StrListValToStr(reqInstanceIds))
+				if err != nil {
+					return err
+				}
+				// call cwp/DeleteMachine
+				for _, ins := range instanceSet {
+					requestDeleteMachine := cwp.NewDeleteMachineRequest()
+					requestDeleteMachine.Uuid = ins.Uuid
+					if _, err := client.UseCwpClient().DeleteMachine(requestDeleteMachine); err != nil {
+						log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
+							logId, requestDeleteMachine.GetAction(), requestDeleteMachine.ToJsonString(), err.Error())
+						return err
+					}
+				}
+			}
+		} else {
+			// default is true, install security agent
+			// tat/InvokeCommand, CommandId=cmd-d8jj2skv, instanceId is enough
+			// https://cloud.tencent.com/document/product/1340/52678
+			for i := 0; i < len(workersInsIdOfNodePool); i += BatchProcessedInsLimit {
+				var reqInstanceIds []string
+				if i+BatchProcessedInsLimit <= len(workersInsIdOfNodePool) {
+					reqInstanceIds = workersInsIdOfNodePool[i : i+BatchProcessedInsLimit]
+				} else {
+					reqInstanceIds = workersInsIdOfNodePool[i:]
+				}
+				requestInvokeCommand := tat.NewInvokeCommandRequest()
+				requestInvokeCommand.InstanceIds = helper.StringsStringsPoint(reqInstanceIds)
+				requestInvokeCommand.CommandId = helper.String(InstallSecurityAgentCommandId)
+				requestInvokeCommand.Parameters = helper.String("{}")
+				requestInvokeCommand.Timeout = helper.Uint64(60)
+				_, err := client.UseTatClient().InvokeCommand(requestInvokeCommand)
+				if err != nil {
+					log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
+						logId, requestInvokeCommand.GetAction(), requestInvokeCommand.ToJsonString(), err.Error())
+					return err
+				}
+			}
+		}
+	}
+	return nil
+}