code of ucloud_anti_ddos_* resource is ready

Author: wangrzneu

go.mod

@@ -4,7 +4,7 @@ go 1.19
 
 require (
 	github.com/hashicorp/terraform-plugin-sdk v1.4.0
-	github.com/ucloud/ucloud-sdk-go v0.21.19
+	github.com/ucloud/ucloud-sdk-go v0.21.53
 )
 
 require (

go.sum

@@ -173,6 +173,10 @@ github.com/stretchr/testify v1.3.0 h1:TivCn/peBQ7UY8ooIcPgZFpTNSz0Q2U6UrFlUfqbe0
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/ucloud/ucloud-sdk-go v0.21.19 h1:WqD38oLDYxWS3s92DBKR99X3bKktuveTdSigcBynDT4=
 github.com/ucloud/ucloud-sdk-go v0.21.19/go.mod h1:dyLmFHmUfgb4RZKYQP9IArlvQ2pxzFthfhwxRzOEPIw=
+github.com/ucloud/ucloud-sdk-go v0.21.51 h1:L81eGOfRoEdu3rDeUfOW4PY6nnuqRbObZD/zRiak3B0=
+github.com/ucloud/ucloud-sdk-go v0.21.51/go.mod h1:dyLmFHmUfgb4RZKYQP9IArlvQ2pxzFthfhwxRzOEPIw=
+github.com/ucloud/ucloud-sdk-go v0.21.53 h1:8tlgdc80Xqe0E+jns9VC+9kT+wmkOzjCzmm96UI9hrw=
+github.com/ucloud/ucloud-sdk-go v0.21.53/go.mod h1:dyLmFHmUfgb4RZKYQP9IArlvQ2pxzFthfhwxRzOEPIw=
 github.com/ulikunitz/xz v0.5.5 h1:pFrO0lVpTBXLpYw+pnLj6TbvHuyjXMfjGeCwSqCVwok=
 github.com/ulikunitz/xz v0.5.5/go.mod h1:2bypXElzHzzJZwzH67Y6wb67pO62Rzfn7BSiF4ABRW8=
 github.com/vmihailenco/msgpack v3.3.3+incompatible/go.mod h1:fy3FlTQTDXWkZ7Bh6AcGMlsjHatGryHQYUTf1ShIgkk=

ucloud/client.go

@@ -5,6 +5,8 @@ import (
 	"github.com/ucloud/ucloud-sdk-go/services/cube"
 	"github.com/ucloud/ucloud-sdk-go/services/ipsecvpn"
 	"github.com/ucloud/ucloud-sdk-go/services/uaccount"
+	"github.com/ucloud/ucloud-sdk-go/services/uads"
+
 	"github.com/ucloud/ucloud-sdk-go/services/udb"
 	"github.com/ucloud/ucloud-sdk-go/services/udisk"
 	"github.com/ucloud/ucloud-sdk-go/services/udpn"
@@ -42,7 +44,7 @@ type UCloudClient struct {
 	us3conn        *ufile.UFileClient
 	cubeconn       *cube.CubeClient
 	uk8sconn       *uk8s.UK8SClient
-
+	uadsconn       *uads.UADSClient
 	// private services
 	pumemconn *pumem.UMemClient
 }

ucloud/config.go

@@ -3,6 +3,7 @@ package ucloud
 import (
 	"encoding/json"
 	"fmt"
+	"github.com/ucloud/ucloud-sdk-go/services/uads"
 	"io/ioutil"
 	"os"
 	"path/filepath"
@@ -133,6 +134,7 @@ func (c *Config) Client() (*UCloudClient, error) {
 	client.ufsconn = ufs.NewClient(&cfg, &cred)
 	client.us3conn = ufile.NewClient(&cfg, &cred)
 	client.cubeconn = cube.NewClient(&cfg, &cred)
+	client.uadsconn = uads.NewClient(&cfg, &cred)
 
 	// initialize client connections for private usage
 	client.pumemconn = pumem.NewClient(&cfg, &cred)
@@ -160,6 +162,7 @@ func (c *Config) Client() (*UCloudClient, error) {
 		client.us3conn.AddHttpRequestHandler(cloudShellCredHandler)
 		client.cubeconn.AddHttpRequestHandler(cloudShellCredHandler)
 		client.uk8sconn.AddHttpRequestHandler(cloudShellCredHandler)
+		client.uadsconn.AddHttpRequestHandler(cloudShellCredHandler)
 	}
 
 	client.config = &cfg

ucloud/consts.go

@@ -205,6 +205,26 @@ var vpnIkeVersionCvt = newStringConverter(map[string]string{
 	"IKE V2": "ikev2",
 })
 
+const uadsAllowedDomainStatusAdding = 1
+const uadsAllowedDomainStatusSuccess = 2
+const uadsAllowedDomainStatusDeleting = 3
+const uadsAllowedDomainStatusFailure = 4
+const uadsAllowedDomainStatusDeleted = 5
+
+var uadsAllowedDomainStatusCvt = newIntConverter(map[int]string{
+	uadsAllowedDomainStatusAdding:   "Adding",
+	uadsAllowedDomainStatusSuccess:  "Success",
+	uadsAllowedDomainStatusDeleting: "Deleting",
+	uadsAllowedDomainStatusFailure:  "Failure",
+	uadsAllowedDomainStatusDeleted:  "Deleted",
+})
+
+const uadsBGPServiceIPStatusSuccess = "Success"
+const uadsBGPServiceIPStatusPending = "Pending"
+
+const uadsBGPServiceFwdRuleStatusSuccess = "Success"
+const uadsBGPServiceFwdRuleStatusPending = "Pending"
+
 // upperCvt is used to transform uppercase with underscore to lowercase with underscore. eg. LOCAL_SSD -> local_ssd
 var upperCvt = newUpperConverter(nil)
 

ucloud/provider.go

@@ -102,37 +102,41 @@ func Provider() terraform.ResourceProvider {
 		},
 
 		ResourcesMap: map[string]*schema.Resource{
-			"ucloud_instance":               resourceUCloudInstance(),
-			"ucloud_eip":                    resourceUCloudEIP(),
-			"ucloud_eip_association":        resourceUCloudEIPAssociation(),
-			"ucloud_vpc":                    resourceUCloudVPC(),
-			"ucloud_subnet":                 resourceUCloudSubnet(),
-			"ucloud_vpc_peering_connection": resourceUCloudVPCPeeringConnection(),
-			"ucloud_udpn_connection":        resourceUCloudUDPNConnection(),
-			"ucloud_lb":                     resourceUCloudLB(),
-			"ucloud_lb_listener":            resourceUCloudLBListener(),
-			"ucloud_lb_attachment":          resourceUCloudLBAttachment(),
-			"ucloud_lb_rule":                resourceUCloudLBRule(),
-			"ucloud_disk":                   resourceUCloudDisk(),
-			"ucloud_disk_attachment":        resourceUCloudDiskAttachment(),
-			"ucloud_security_group":         resourceUCloudSecurityGroup(),
-			"ucloud_lb_ssl":                 resourceUCloudLBSSL(),
-			"ucloud_lb_ssl_attachment":      resourceUCloudLBSSLAttachment(),
-			"ucloud_db_instance":            resourceUCloudDBInstance(),
-			"ucloud_redis_instance":         resourceUCloudRedisInstance(),
-			"ucloud_memcache_instance":      resourceUCloudMemcacheInstance(),
-			"ucloud_isolation_group":        resourceUCloudIsolationGroup(),
-			"ucloud_vip":                    resourceUCloudVIP(),
-			"ucloud_nat_gateway":            resourceUCloudNatGateway(),
-			"ucloud_nat_gateway_rule":       resourceUCloudNatGatewayRule(),
-			"ucloud_vpn_gateway":            resourceUCloudVPNGateway(),
-			"ucloud_vpn_customer_gateway":   resourceUCloudVPNCustomerGateway(),
-			"ucloud_vpn_connection":         resourceUCloudVPNConnection(),
-			"ucloud_ufs_volume":             resourceUCloudUFSVolume(),
-			"ucloud_ufs_volume_mount_point": resourceUCloudUFSVolumeMountPoint(),
-			"ucloud_us3_bucket":             resourceUCloudUS3Bucket(),
-			"ucloud_uk8s_cluster":           resourceUCloudUK8SCluster(),
-			"ucloud_uk8s_node":              resourceUCloudUK8SNode(),
+			"ucloud_instance":                 resourceUCloudInstance(),
+			"ucloud_eip":                      resourceUCloudEIP(),
+			"ucloud_eip_association":          resourceUCloudEIPAssociation(),
+			"ucloud_vpc":                      resourceUCloudVPC(),
+			"ucloud_subnet":                   resourceUCloudSubnet(),
+			"ucloud_vpc_peering_connection":   resourceUCloudVPCPeeringConnection(),
+			"ucloud_udpn_connection":          resourceUCloudUDPNConnection(),
+			"ucloud_lb":                       resourceUCloudLB(),
+			"ucloud_lb_listener":              resourceUCloudLBListener(),
+			"ucloud_lb_attachment":            resourceUCloudLBAttachment(),
+			"ucloud_lb_rule":                  resourceUCloudLBRule(),
+			"ucloud_disk":                     resourceUCloudDisk(),
+			"ucloud_disk_attachment":          resourceUCloudDiskAttachment(),
+			"ucloud_security_group":           resourceUCloudSecurityGroup(),
+			"ucloud_lb_ssl":                   resourceUCloudLBSSL(),
+			"ucloud_lb_ssl_attachment":        resourceUCloudLBSSLAttachment(),
+			"ucloud_db_instance":              resourceUCloudDBInstance(),
+			"ucloud_redis_instance":           resourceUCloudRedisInstance(),
+			"ucloud_memcache_instance":        resourceUCloudMemcacheInstance(),
+			"ucloud_isolation_group":          resourceUCloudIsolationGroup(),
+			"ucloud_vip":                      resourceUCloudVIP(),
+			"ucloud_nat_gateway":              resourceUCloudNatGateway(),
+			"ucloud_nat_gateway_rule":         resourceUCloudNatGatewayRule(),
+			"ucloud_vpn_gateway":              resourceUCloudVPNGateway(),
+			"ucloud_vpn_customer_gateway":     resourceUCloudVPNCustomerGateway(),
+			"ucloud_vpn_connection":           resourceUCloudVPNConnection(),
+			"ucloud_ufs_volume":               resourceUCloudUFSVolume(),
+			"ucloud_ufs_volume_mount_point":   resourceUCloudUFSVolumeMountPoint(),
+			"ucloud_us3_bucket":               resourceUCloudUS3Bucket(),
+			"ucloud_uk8s_cluster":             resourceUCloudUK8SCluster(),
+			"ucloud_uk8s_node":                resourceUCloudUK8SNode(),
+			"ucloud_anti_ddos_instance":       resourceUCloudAntiDDoSInstance(),
+			"ucloud_anti_ddos_allowed_domain": resourceUCloudAntiDDoSAllowedDomain(),
+			"ucloud_anti_ddos_ip":             resourceUCloudAntiDDoSIP(),
+			"ucloud_anti_ddos_rule":           resourceUCloudAntiDDoSRule(),
 		},
 		ConfigureFunc: providerConfigure,
 	}

ucloud/resource_ucloud_anti_ddos_allowed_domain.go

@@ -0,0 +1,201 @@
+package ucloud
+
+import (
+	"fmt"
+	"strings"
+	"time"
+
+	"github.com/hashicorp/terraform-plugin-sdk/helper/customdiff"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	"github.com/ucloud/ucloud-sdk-go/ucloud"
+)
+
+func resourceUCloudAntiDDoSAllowedDomain() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceUCloudAntiDDoSAllowedDomainCreate,
+		Read:   resourceUCloudAntiDDoSAllowedDomainRead,
+		Update: resourceUCloudAntiDDoSAllowedDomainUpdate,
+		Delete: resourceUCloudAntiDDoSAllowedDomainDelete,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+
+		CustomizeDiff: customdiff.All(),
+
+		Schema: map[string]*schema.Schema{
+			"domain": {
+				Type:     schema.TypeString,
+				Required: true,
+				ForceNew: true,
+			},
+
+			"comment": {
+				Type:     schema.TypeString,
+				Optional: true,
+				Computed: true,
+			},
+
+			"instance_id": {
+				Type:     schema.TypeString,
+				Required: true,
+				ForceNew: true,
+			},
+
+			"status": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+		},
+	}
+}
+
+func resourceUCloudAntiDDoSAllowedDomainCreate(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*UCloudClient)
+	conn := client.uadsconn
+	domain := d.Get("domain").(string)
+	req := conn.NewAddNapAllowListDomainRequest()
+	req.ResourceId = ucloud.String(d.Get("instance_id").(string))
+	req.Domain = []string{domain}
+
+	resp, err := conn.AddNapAllowListDomain(req)
+	if err != nil {
+		return fmt.Errorf("error on creating ucloud_anti_ddos_domain, %s", err)
+	}
+
+	for _, data := range resp.Data {
+		if data.Domain == domain && data.Code != 0 {
+			return fmt.Errorf("fail to create domain %v to %v with RetCode %v", data.Domain, d.Id(), data.Code)
+		}
+	}
+	instanceId := d.Get("instance_id").(string)
+	d.SetId(fmt.Sprintf("%s/%s", instanceId, d.Get("domain").(string)))
+
+	// after create lb, we need to wait it initialized
+	stateConf := antiDDoSAllowedDomainWaitForState(client, instanceId, domain)
+
+	_, err = stateConf.WaitForState()
+	if err != nil {
+		return fmt.Errorf("error on waiting for ucloud_anti_ddos_instance %q creating, %s", d.Id(), err)
+	}
+
+	if comment, ok := d.GetOkExists("comment"); ok {
+		remarkReq := conn.NewSetNapDomainEntryRemarkRequest()
+		remarkReq.ResourceId = req.ResourceId
+		remarkReq.Domain = ucloud.String(domain)
+		remarkReq.Remark = ucloud.String(comment.(string))
+		_, err := conn.SetNapDomainEntryRemark(remarkReq)
+		if err != nil {
+			return fmt.Errorf("fail to set comment %v for domain %v of %v", comment, domain, *req.ResourceId)
+		}
+	}
+
+	return resourceUCloudAntiDDoSAllowedDomainRead(d, meta)
+}
+
+func resourceUCloudAntiDDoSAllowedDomainUpdate(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*UCloudClient)
+	conn := client.uadsconn
+	d.Partial(true)
+	instanceId := d.Get("instance_id").(string)
+	domain := d.Get("domain").(string)
+
+	if d.HasChange("comment") && !d.IsNewResource() {
+		comment := d.Get("comment").(string)
+		remarkReq := conn.NewSetNapDomainEntryRemarkRequest()
+		remarkReq.ResourceId = ucloud.String(instanceId)
+		remarkReq.Domain = ucloud.String(domain)
+		remarkReq.Remark = ucloud.String(comment)
+		_, err := conn.SetNapDomainEntryRemark(remarkReq)
+		if err != nil {
+			return fmt.Errorf("fail to set comment %v for domain %v of %v", comment, domain, instanceId)
+		}
+		d.SetPartial("comment")
+	}
+
+	d.Partial(false)
+
+	return resourceUCloudAntiDDoSAllowedDomainRead(d, meta)
+}
+
+func resourceUCloudAntiDDoSAllowedDomainRead(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*UCloudClient)
+	id := d.Id()
+	items := strings.SplitN(id, "/", 2)
+	if len(items) != 2 {
+		return fmt.Errorf("%v is an invalid ucloud_anti_ddos_allowed_domain id", id)
+	}
+	instanceId := items[0]
+	domain := items[1]
+
+	domainInfo, err := client.describeUADSAllowedDomain(instanceId, domain)
+
+	if err != nil {
+		if isNotFoundError(err) {
+			d.SetId("")
+			return nil
+		}
+		return fmt.Errorf("error on reading uads allowed domain %s of %s, %s", domain, instanceId, err)
+	}
+	d.Set("domain", domain)
+	d.Set("instance_id", instanceId)
+	d.Set("comment", domainInfo.Remark)
+	d.Set("status", uadsAllowedDomainStatusCvt.convert(domainInfo.Status))
+	return nil
+}
+
+func resourceUCloudAntiDDoSAllowedDomainDelete(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*UCloudClient)
+	conn := client.uadsconn
+	instanceId := d.Get("instance_id").(string)
+	domain := d.Get("domain").(string)
+
+	req := conn.NewDeleteNapAllowListDomainRequest()
+	req.ResourceId = ucloud.String(instanceId)
+	req.Domain = []string{domain}
+
+	return resource.Retry(5*time.Minute, func() *resource.RetryError {
+		if _, err := conn.DeleteNapAllowListDomain(req); err != nil {
+			return resource.NonRetryableError(fmt.Errorf("error on deleting ucloud_anti_ddos_allowed_domain %s, %s", d.Id(), err))
+		}
+
+		_, err := client.describeUADSAllowedDomain(instanceId, domain)
+		if err != nil {
+			if isNotFoundError(err) {
+				return nil
+			}
+			return resource.NonRetryableError(fmt.Errorf("error on reading ucloud_anti_ddos_allowed_domain when deleting %s, %s", d.Id(), err))
+		}
+
+		return resource.RetryableError(fmt.Errorf("the specified ucloud_anti_ddos_allowed_domain %s has not been deleted due to unknown error", d.Id()))
+	})
+}
+
+func antiDDoSAllowedDomainWaitForState(client *UCloudClient, id string, domain string) *resource.StateChangeConf {
+	return &resource.StateChangeConf{
+		Pending:    []string{statusPending},
+		Target:     []string{statusInitialized},
+		Timeout:    3 * time.Minute,
+		Delay:      2 * time.Second,
+		MinTimeout: 1 * time.Second,
+		Refresh: func() (interface{}, string, error) {
+			domainInfo, err := client.describeUADSAllowedDomain(id, domain)
+			if err != nil {
+				if isNotFoundError(err) {
+					return nil, statusPending, nil
+				}
+				return nil, "", err
+			}
+
+			if domainInfo.Status == uadsAllowedDomainStatusSuccess {
+				return domainInfo, statusInitialized, nil
+			} else if domainInfo.Status == uadsAllowedDomainStatusAdding {
+				return domainInfo, statusPending, nil
+			} else if domainInfo.Status == uadsAllowedDomainStatusFailure {
+				return nil, "", fmt.Errorf("fail to add domain %v for %v", domain, id)
+			} else {
+				return nil, "", fmt.Errorf("status %v should not be got", domainInfo.Status)
+			}
+		},
+	}
+}