fix: support for multiple qcs_service_name (#1452)

gitmkn · anonymous · web-flow · commit 67dff2470e4f · 2022-12-13T14:36:54.000+08:00
* fix: support for multiple qcs_service_name

* feat: add changelog

Co-authored-by: anonymous &lt;anonymous@mail.org&gt;
diff --git a/.changelog/1452.txt b/.changelog/1452.txt
@@ -0,0 +1,3 @@
+```release-note:enhancement
+resource/tencentcloud_cam_service_linked_role: support for multiple qcs_service_name
+```
diff --git a/tencentcloud/resource_tc_cam_service_linked_role.go b/tencentcloud/resource_tc_cam_service_linked_role.go
@@ -5,7 +5,7 @@ Example Usage
 
 ```hcl
 resource "tencentcloud_cam_service_linked_role" "service_linked_role" {
-  qcs_service_name = "postgreskms.postgres.cloud.tencent.com"
+  qcs_service_name = ["cvm.qcloud.com","ekslog.tke.cloud.tencent.com"]
   custom_suffix = "x-1"
   description = "desc cam"
   tags = {
@@ -21,7 +21,6 @@ import (
 	"context"
 	"fmt"
 	"log"
-	"strings"
 
 	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
 	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
@@ -37,7 +36,8 @@ func resourceTencentCloudCamServiceLinkedRole() *schema.Resource {
 		Delete: resourceTencentCloudCamServiceLinkedRoleDelete,
 		Schema: map[string]*schema.Schema{
 			"qcs_service_name": {
-				Type:        schema.TypeString,
+				Type:        schema.TypeSet,
+				Elem:        &schema.Schema{Type: schema.TypeString},
 				Required:    true,
 				Description: "Authorization service, the Tencent Cloud service principal with this role attached.",
 			},
@@ -70,20 +70,21 @@ func resourceTencentCloudCamServiceLinkedRoleCreate(d *schema.ResourceData, meta
 	logId := getLogId(contextNil)
 
 	var (
-		request        = cam.NewCreateServiceLinkedRoleRequest()
-		response       *cam.CreateServiceLinkedRoleResponse
-		roleId         string
-		qcsServiceName = ""
-		customSuffix   = ""
+		request  = cam.NewCreateServiceLinkedRoleRequest()
+		response *cam.CreateServiceLinkedRoleResponse
+		roleId   string
 	)
 
 	if v, ok := d.GetOk("qcs_service_name"); ok {
-		qcsServiceName = v.(string)
-		request.QCSServiceName = helper.Strings([]string{v.(string)})
+		serviceName := v.(*schema.Set).List()
+		serviceNameArr := make([]*string, 0, len(serviceName))
+		for _, name := range serviceName {
+			serviceNameArr = append(serviceNameArr, helper.String(name.(string)))
+		}
+		request.QCSServiceName = serviceNameArr
 	}
 
 	if v, ok := d.GetOk("custom_suffix"); ok {
-		customSuffix = v.(string)
 		request.CustomSuffix = helper.String(v.(string))
 	}
 
@@ -121,7 +122,7 @@ func resourceTencentCloudCamServiceLinkedRoleCreate(d *schema.ResourceData, meta
 
 	roleId = *response.Response.RoleId
 
-	d.SetId(roleId + FILED_SP + qcsServiceName + FILED_SP + customSuffix)
+	d.SetId(roleId)
 	ctx := context.WithValue(context.TODO(), logIdKey, logId)
 	if tags := helper.GetTags(d, "tags"); len(tags) > 0 {
 		tagService := TagService{client: meta.(*TencentCloudClient).apiV3Conn}
@@ -142,14 +143,7 @@ func resourceTencentCloudCamServiceLinkedRoleRead(d *schema.ResourceData, meta i
 	ctx := context.WithValue(context.TODO(), logIdKey, logId)
 	service := CamService{client: meta.(*TencentCloudClient).apiV3Conn}
 
-	resourceId := d.Id()
-	items := strings.Split(resourceId, FILED_SP)
-	if len(items) != 3 {
-		return fmt.Errorf("invalid ID %s", resourceId)
-	}
-	roleId := items[0]
-	qcsServiceName := items[1]
-	customSuffix := items[2]
+	roleId := d.Id()
 
 	serviceLinkedRole, err := service.DescribeCamServiceLinkedRole(ctx, roleId)
 	if err != nil {
@@ -161,13 +155,13 @@ func resourceTencentCloudCamServiceLinkedRoleRead(d *schema.ResourceData, meta i
 		return fmt.Errorf("resource `serviceLinkedRole` %s does not exist", roleId)
 	}
 
-	if qcsServiceName != "" {
-		_ = d.Set("qcs_service_name", qcsServiceName)
-	}
+	// if qcsServiceName != "" {
+	// 	_ = d.Set("qcs_service_name", qcsServiceName)
+	// }
 
-	if customSuffix != "" {
-		_ = d.Set("custom_suffix", customSuffix)
-	}
+	// if customSuffix != "" {
+	// 	_ = d.Set("custom_suffix", customSuffix)
+	// }
 
 	if serviceLinkedRole.Description != nil {
 		_ = d.Set("description", serviceLinkedRole.Description)
@@ -192,14 +186,7 @@ func resourceTencentCloudCamServiceLinkedRoleUpdate(d *schema.ResourceData, meta
 	ctx := context.WithValue(context.TODO(), logIdKey, logId)
 	request := cam.NewUpdateRoleDescriptionRequest()
 
-	resourceId := d.Id()
-	items := strings.Split(resourceId, FILED_SP)
-	if len(items) != 3 {
-		return fmt.Errorf("invalid ID %s", resourceId)
-	}
-	roleId := items[0]
-	// qcsServiceName := items[1]
-	// customSuffix := items[2]
+	roleId := d.Id()
 
 	request.RoleId = &roleId
 
@@ -255,14 +242,7 @@ func resourceTencentCloudCamServiceLinkedRoleDelete(d *schema.ResourceData, meta
 
 	service := CamService{client: meta.(*TencentCloudClient).apiV3Conn}
 
-	resourceId := d.Id()
-	items := strings.Split(resourceId, FILED_SP)
-	if len(items) != 3 {
-		return fmt.Errorf("invalid ID %s", resourceId)
-	}
-	roleId := items[0]
-	// qcsServiceName := items[1]
-	// customSuffix := items[2]
+	roleId := d.Id()
 
 	serviceLinkedRole, err := service.DescribeCamServiceLinkedRole(ctx, roleId)
 	if err != nil {
diff --git a/tencentcloud/resource_tc_cam_service_linked_role_test.go b/tencentcloud/resource_tc_cam_service_linked_role_test.go
@@ -3,7 +3,6 @@ package tencentcloud
 import (
 	"context"
 	"fmt"
-	"strings"
 	"testing"
 
 	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
@@ -23,7 +22,7 @@ func TestAccTencentCloudCamServiceLinkedRoleResource_basic(t *testing.T) {
 				Check: resource.ComposeTestCheckFunc(
 					testAccCheckCamServiceLinkedRoleExists("tencentcloud_cam_service_linked_role.service_linked_role"),
 					resource.TestCheckResourceAttrSet("tencentcloud_cam_service_linked_role.service_linked_role", "id"),
-					resource.TestCheckResourceAttr("tencentcloud_cam_service_linked_role.service_linked_role", "qcs_service_name", "postgreskms.postgres.cloud.tencent.com"),
+					resource.TestCheckResourceAttr("tencentcloud_cam_service_linked_role.service_linked_role", "qcs_service_name.#", "2"),
 					resource.TestCheckResourceAttr("tencentcloud_cam_service_linked_role.service_linked_role", "custom_suffix", "x-1"),
 					resource.TestCheckResourceAttr("tencentcloud_cam_service_linked_role.service_linked_role", "description", "desc cam"),
 					resource.TestCheckResourceAttr("tencentcloud_cam_service_linked_role.service_linked_role", "tags.createdBy", "terraform"),
@@ -48,13 +47,8 @@ func testAccCheckCamServiceLinkedRoleDestroy(s *terraform.State) error {
 		if rs.Primary.ID == "" {
 			return fmt.Errorf("[CHECK]CAM ServiceLinkedRole id is not set")
 		}
-		items := strings.Split(rs.Primary.ID, FILED_SP)
-		if len(items) != 3 {
-			return fmt.Errorf("invalid ID %s", rs.Primary.ID)
-		}
-		roleId := items[0]
 
-		instance, err := camService.DescribeCamServiceLinkedRole(ctx, roleId)
+		instance, err := camService.DescribeCamServiceLinkedRole(ctx, rs.Primary.ID)
 		if err == nil && instance != nil {
 			return fmt.Errorf("[CHECK]CAM ServiceLinkedRole still exists: %s", rs.Primary.ID)
 		}
@@ -75,11 +69,7 @@ func testAccCheckCamServiceLinkedRoleExists(n string) resource.TestCheckFunc {
 			return fmt.Errorf("[CHECK]CAM ServiceLinkedRole id is not set")
 		}
 
-		items := strings.Split(rs.Primary.ID, FILED_SP)
-		if len(items) != 3 {
-			return fmt.Errorf("invalid ID %s", rs.Primary.ID)
-		}
-		roleId := items[0]
+		roleId := rs.Primary.ID
 
 		camService := CamService{
 			client: testAccProvider.Meta().(*TencentCloudClient).apiV3Conn,
@@ -98,7 +88,7 @@ func testAccCheckCamServiceLinkedRoleExists(n string) resource.TestCheckFunc {
 const testAccCamServiceLinkedRole = `
 
 resource "tencentcloud_cam_service_linked_role" "service_linked_role" {
-	qcs_service_name = "postgreskms.postgres.cloud.tencent.com"
+	qcs_service_name = ["cvm.qcloud.com","ekslog.tke.cloud.tencent.com"]
 	custom_suffix = "x-1"
 	description = "desc cam"
 	tags = {
diff --git a/website/docs/r/cam_service_linked_role.html.markdown b/website/docs/r/cam_service_linked_role.html.markdown
@@ -15,7 +15,7 @@ Provides a resource to create a cam service_linked_role
 
 ```hcl
 resource "tencentcloud_cam_service_linked_role" "service_linked_role" {
-  qcs_service_name = "postgreskms.postgres.cloud.tencent.com"
+  qcs_service_name = ["cvm.qcloud.com", "ekslog.tke.cloud.tencent.com"]
   custom_suffix    = "x-1"
   description      = "desc cam"
   tags = {
@@ -28,7 +28,7 @@ resource "tencentcloud_cam_service_linked_role" "service_linked_role" {
 
 The following arguments are supported:
 
-* `qcs_service_name` - (Required, String) Authorization service, the Tencent Cloud service principal with this role attached.
+* `qcs_service_name` - (Required, Set: [`String`]) Authorization service, the Tencent Cloud service principal with this role attached.
 * `custom_suffix` - (Optional, String) The custom suffix, based on the string you provide, is combined with the prefix provided by the service to form the full role name.
 * `description` - (Optional, String) role description.
 * `tags` - (Optional, Map) Tag description list.

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	+```release-note:enhancement
	`2`	`+resource/tencentcloud_cam_service_linked_role: support for multiple qcs_service_name`
	`3`	+```