feat/support DBBrain resource (#1417)

* feat/support dbrain resource

* add audit log export task resource

* passed e2e test

* fix golangci-lint

* remove import

Author: lyu571

.changelog/1417.txt

@@ -0,0 +1,7 @@
+```release-note:new-resource
+tencentcloud_dbbrain_sql_filter
+```
+
+```release-note:new-resource
+tencentcloud_dbbrain_security_audit_log_export_task
+```

go.mod

@@ -35,10 +35,11 @@ require (
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/clb v1.0.445
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cloudaudit v1.0.199
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cls v1.0.412
-	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.540
+	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.542
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.445
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cynosdb v1.0.488
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dayu v1.0.335
+	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dbbrain v1.0.542
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dc v1.0.199
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dcdb v1.0.527
 	github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dnspod v1.0.539

go.sum

@@ -519,12 +519,16 @@ github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.539 h1:5lhW
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.539/go.mod h1:7sCQWVkxcsR38nffDW057DRGk8mUjK1Ing/EFOK8s8Y=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.540 h1:gcESVrWAja6ap5WMz0NbmSxI6S2ee89j4KM3BNEXuoA=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.540/go.mod h1:7sCQWVkxcsR38nffDW057DRGk8mUjK1Ing/EFOK8s8Y=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.542 h1:hnKPqiCRTgbAimItdWC4J8TYjzpmdXmiO9AGoj1WjPc=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common v1.0.542/go.mod h1:7sCQWVkxcsR38nffDW057DRGk8mUjK1Ing/EFOK8s8Y=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.445 h1:Bh7XD0ypNMHYyBOM8hhKsSu+y0VVKUnJVS+YKKhfpGg=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm v1.0.445/go.mod h1:jMDD351efCFpT1+KVFbcpu6SbmP4TYmp4qkoCfr63nQ=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cynosdb v1.0.488 h1:A1seXWtMf2atBjSNYvcwxyDoFzCMgqyVnsxnWzhqJEA=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cynosdb v1.0.488/go.mod h1:T8mL4dQLkPTL6VtVMeBYol3asSUS53ycP9PJf5Qp1GE=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dayu v1.0.335 h1:D8qrelkK5udv8RzJJIABMzItGIyaZoYnxEVeIsYqiNw=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dayu v1.0.335/go.mod h1:pz4s3nOhoB9cY0+uWzifuwr7lfh/Gvi1rv0ADxpPzD4=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dbbrain v1.0.542 h1:96OU+NJZKgx6VC7KTu4syZ4I71LwUHLAl5BeKNHanio=
+github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dbbrain v1.0.542/go.mod h1:3/T0WFIreoZnp4qmZTQwQZImcnwTtYnTMwmsnK/yWhY=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dc v1.0.199 h1:7ShREKvI8ik2YNtLF42JR9x2YEeZS/gZvhIRfpsI8T0=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dc v1.0.199/go.mod h1:5WGSrlIZJOhwIqPjjafb6vzrPEZieSHPhPMjjGPXOSU=
 github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dcdb v1.0.527 h1:YBswG1ojXMW6hnbPtB7H/E1jdXOqHGuGVTrNXpa2TBQ=

tencentcloud/basic_test.go

@@ -827,3 +827,10 @@ const (
 )
 
 // End of TDCPG
+
+// DBBRAIN
+const (
+	defaultDbBrainsagId = "sag-01z37l4g"
+)
+
+// End of DBBRAIN

tencentcloud/connectivity/client.go

@@ -38,6 +38,7 @@ import (
 	cvm "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cvm/v20170312"
 	cynosdb "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cynosdb/v20190107"
 	dayu "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dayu/v20180709"
+	dbbrain "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dbbrain/v20210527"
 	dc "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dc/v20180410"
 	dcdb "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dcdb/v20180411"
 	dnspod "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dnspod/v20210323"
@@ -145,6 +146,7 @@ type TencentCloudClient struct {
 	tatConn            *tat.Client
 	organizationConn   *organization.Client
 	tdcpgConn          *tdcpg.Client
+	dbbrainConn        *dbbrain.Client
 }
 
 // NewClientProfile returns a new ClientProfile
@@ -928,6 +930,20 @@ func (me *TencentCloudClient) UseTdcpgClient() *tdcpg.Client {
 	return me.tdcpgConn
 }
 
+// UseDbbrainClient returns dbbrain client for service
+func (me *TencentCloudClient) UseDbbrainClient() *dbbrain.Client {
+	if me.dbbrainConn != nil {
+		return me.dbbrainConn
+	}
+
+	cpf := me.NewClientProfile(300)
+	cpf.Language = "zh-CN"
+	me.dbbrainConn, _ = dbbrain.NewClient(me.Credential, me.Region, cpf)
+	me.dbbrainConn.WithHttpTransport(&LogRoundTripper{})
+
+	return me.dbbrainConn
+}
+
 func getEnvDefault(key string, defVal int) int {
 	val, ex := os.LookupEnv(key)
 	if !ex {

tencentcloud/internal/helper/transform.go

@@ -48,6 +48,18 @@ func Strings(strs []string) []*string {
 	return sp
 }
 
+func StringsToUint64Pointer(strs []*string) []*uint64 {
+	if len(strs) == 0 {
+		return nil
+	}
+
+	vs := make([]*uint64, 0, len(strs))
+	for _, v := range strs {
+		vs = append(vs, StrToUint64Point(*v))
+	}
+	return vs
+}
+
 func PString(pointer *string) string {
 	if pointer == nil {
 		return ""
@@ -183,6 +195,11 @@ func UInt64ToStr(s uint64) (i string) {
 	return
 }
 
+func UInt64ToStrPoint(i uint64) *string {
+	s := strconv.FormatUint(i, 10)
+	return &s
+}
+
 func StrToUInt64(s string) (i uint64) {
 	intNum, _ := strconv.Atoi(s)
 	i = uint64(intNum)

tencentcloud/provider.go

@@ -786,6 +786,12 @@ TDSQL-C for PostgreSQL(TDCPG)
   Resource
 	tencentcloud_tdcpg_cluster
 	tencentcloud_tdcpg_instance
+
+DBbrain
+  Resource
+	tencentcloud_dbbrain_sql_filter
+	tencentcloud_dbbrain_security_audit_log_export_task
+
 */
 package tencentcloud
 
@@ -1400,6 +1406,8 @@ func Provider() terraform.ResourceProvider {
 			"tencentcloud_organization_org_node":                      resourceTencentCloudOrganizationOrgNode(),
 			"tencentcloud_organization_org_member":                    resourceTencentCloudOrganizationOrgMember(),
 			"tencentcloud_organization_policy_sub_account_attachment": resourceTencentCloudOrganizationPolicySubAccountAttachment(),
+			"tencentcloud_dbbrain_sql_filter":                         resourceTencentCloudDbbrainSqlFilter(),
+			"tencentcloud_dbbrain_security_audit_log_export_task":     resourceTencentCloudDbbrainSecurityAuditLogExportTask(),
 		},
 
 		ConfigureFunc: providerConfigure,

tencentcloud/resource_tc_dbbrain_security_audit_log_export_task.go

@@ -0,0 +1,224 @@
+/*
+Provides a resource to create a dbbrain security_audit_log_export_task
+
+Example Usage
+
+```hcl
+resource "tencentcloud_dbbrain_security_audit_log_export_task" "task" {
+  sec_audit_group_id = "sec_audit_group_id"
+  start_time = "2020-12-28 00:00:00"
+  end_time = "2020-12-28 01:00:00"
+  product = "mysql"
+  danger_levels = [0,1,2]
+}
+
+```
+*/
+package tencentcloud
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"log"
+	"strings"
+
+	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	dbbrain "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/dbbrain/v20210527"
+	"github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/internal/helper"
+)
+
+func resourceTencentCloudDbbrainSecurityAuditLogExportTask() *schema.Resource {
+	return &schema.Resource{
+		Read:   resourceTencentCloudDbbrainSecurityAuditLogExportTaskRead,
+		Create: resourceTencentCloudDbbrainSecurityAuditLogExportTaskCreate,
+		Delete: resourceTencentCloudDbbrainSecurityAuditLogExportTaskDelete,
+		// Importer: &schema.ResourceImporter{
+		// 	State: schema.ImportStatePassthrough,
+		// },
+		Schema: map[string]*schema.Schema{
+			"sec_audit_group_id": {
+				Type:        schema.TypeString,
+				Required:    true,
+				ForceNew:    true,
+				Description: "security audit group id.",
+			},
+
+			"start_time": {
+				Type:        schema.TypeString,
+				Required:    true,
+				ForceNew:    true,
+				Description: "start time.",
+			},
+
+			"end_time": {
+				Type:        schema.TypeString,
+				Required:    true,
+				ForceNew:    true,
+				Description: "end time.",
+			},
+
+			"product": {
+				Type:        schema.TypeString,
+				Required:    true,
+				ForceNew:    true,
+				Description: "product, optional value is mysql.",
+			},
+
+			"danger_levels": {
+				Type: schema.TypeSet,
+				Elem: &schema.Schema{
+					Type: schema.TypeInt,
+				},
+				Optional:    true,
+				ForceNew:    true,
+				Description: "List of log risk levels, supported values include: 0 no risk; 1 low risk; 2 medium risk; 3 high risk.",
+			},
+		},
+	}
+}
+
+func resourceTencentCloudDbbrainSecurityAuditLogExportTaskCreate(d *schema.ResourceData, meta interface{}) error {
+	defer logElapsed("resource.tencentcloud_dbbrain_security_audit_log_export_task.create")()
+	defer inconsistentCheck(d, meta)()
+
+	logId := getLogId(contextNil)
+
+	var (
+		request         = dbbrain.NewCreateSecurityAuditLogExportTaskRequest()
+		response        *dbbrain.CreateSecurityAuditLogExportTaskResponse
+		service         = DbbrainService{client: meta.(*TencentCloudClient).apiV3Conn}
+		ctx             = context.WithValue(context.TODO(), logIdKey, logId)
+		secAuditGroupId string
+		asyncRequestId  string
+	)
+
+	if v, ok := d.GetOk("sec_audit_group_id"); ok {
+		secAuditGroupId = v.(string)
+		request.SecAuditGroupId = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("start_time"); ok {
+		request.StartTime = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("end_time"); ok {
+		request.EndTime = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("product"); ok {
+		request.Product = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("danger_levels"); ok {
+		dangerLevelsSet := v.(*schema.Set).List()
+		for i := range dangerLevelsSet {
+			dangerLevels := dangerLevelsSet[i].(int)
+			request.DangerLevels = append(request.DangerLevels, helper.IntInt64(dangerLevels))
+		}
+	}
+
+	err := resource.Retry(writeRetryTimeout, func() *resource.RetryError {
+		result, e := meta.(*TencentCloudClient).apiV3Conn.UseDbbrainClient().CreateSecurityAuditLogExportTask(request)
+		if e != nil {
+			return retryError(e)
+		} else {
+			log.Printf("[DEBUG]%s api[%s] success, request body [%s], response body [%s]\n",
+				logId, request.GetAction(), request.ToJsonString(), result.ToJsonString())
+		}
+		response = result
+		return nil
+	})
+	if err != nil {
+		log.Printf("[CRITAL]%s create dbbrain securityAuditLogExportTask failed, reason:%+v", logId, err)
+		return err
+	}
+
+	asyncRequestId = helper.UInt64ToStr(*response.Response.AsyncRequestId)
+
+	err = resource.Retry(2*readRetryTimeout, func() *resource.RetryError {
+		ret, err := service.DescribeDbbrainSecurityAuditLogExportTask(ctx, helper.String(secAuditGroupId), helper.String(asyncRequestId), nil)
+		if err != nil {
+			return retryError(err)
+		}
+		if ret != nil {
+			log.Printf("[###########] task.Status:[%s]\n", *ret.Status)
+			return nil
+		}
+		return resource.RetryableError(errors.New("[DEBUG] describe the audit log export task is nil, retry..."))
+	})
+	if err != nil {
+		log.Printf("[CRITAL]%s query dbbrain securityAuditLogExportTask failed, reason:%+v", logId, err)
+		return err
+	}
+
+	d.SetId(secAuditGroupId + FILED_SP + asyncRequestId)
+	return resourceTencentCloudDbbrainSecurityAuditLogExportTaskRead(d, meta)
+}
+
+func resourceTencentCloudDbbrainSecurityAuditLogExportTaskRead(d *schema.ResourceData, meta interface{}) error {
+	defer logElapsed("resource.tencentcloud_dbbrain_security_audit_log_export_task.read")()
+	defer inconsistentCheck(d, meta)()
+
+	logId := getLogId(contextNil)
+	ctx := context.WithValue(context.TODO(), logIdKey, logId)
+
+	service := DbbrainService{client: meta.(*TencentCloudClient).apiV3Conn}
+
+	idSplit := strings.Split(d.Id(), FILED_SP)
+	if len(idSplit) != 2 {
+		return fmt.Errorf("id is broken,%s", d.Id())
+	}
+	secAuditGroupId := helper.String(idSplit[0])
+	asyncRequestId := helper.String(idSplit[1])
+
+	securityAuditLogExportTask, err := service.DescribeDbbrainSecurityAuditLogExportTask(ctx, secAuditGroupId, asyncRequestId, nil)
+	if err != nil {
+		return err
+	}
+
+	// _ = d.Set("sec_audit_group_id", secAuditGroupId)
+
+	if securityAuditLogExportTask == nil {
+		d.SetId("")
+		return fmt.Errorf("resource `securityAuditLogExportTask` %s does not exist", d.Id())
+	}
+
+	if securityAuditLogExportTask.LogStartTime != nil {
+		_ = d.Set("start_time", securityAuditLogExportTask.LogStartTime)
+	}
+
+	if securityAuditLogExportTask.LogEndTime != nil {
+		_ = d.Set("end_time", securityAuditLogExportTask.LogEndTime)
+	}
+
+	if securityAuditLogExportTask.DangerLevels != nil {
+		_ = d.Set("danger_levels", securityAuditLogExportTask.DangerLevels)
+	}
+
+	return nil
+}
+
+func resourceTencentCloudDbbrainSecurityAuditLogExportTaskDelete(d *schema.ResourceData, meta interface{}) error {
+	defer logElapsed("resource.tencentcloud_dbbrain_security_audit_log_export_task.delete")()
+	defer inconsistentCheck(d, meta)()
+
+	logId := getLogId(contextNil)
+	ctx := context.WithValue(context.TODO(), logIdKey, logId)
+
+	service := DbbrainService{client: meta.(*TencentCloudClient).apiV3Conn}
+
+	idSplit := strings.Split(d.Id(), FILED_SP)
+	if len(idSplit) != 2 {
+		return fmt.Errorf("id is broken,%s", d.Id())
+	}
+	secAuditGroupId := helper.String(idSplit[0])
+	asyncRequestId := helper.String(idSplit[1])
+
+	if err := service.DeleteDbbrainSecurityAuditLogExportTaskById(ctx, secAuditGroupId, asyncRequestId, nil); err != nil {
+		return err
+	}
+
+	return nil
+}