2018-10-17 22:38:59 +00:00
|
|
|
// ----------------------------------------------------------------------------
|
|
|
|
//
|
|
|
|
// *** AUTO GENERATED CODE *** AUTO GENERATED CODE ***
|
|
|
|
//
|
|
|
|
// ----------------------------------------------------------------------------
|
|
|
|
//
|
|
|
|
// This file is automatically generated by Magic Modules and manual
|
|
|
|
// changes will be clobbered when the file is regenerated.
|
|
|
|
//
|
|
|
|
// Please read more about how to change this file in
|
|
|
|
// .github/CONTRIBUTING.md.
|
|
|
|
//
|
|
|
|
// ----------------------------------------------------------------------------
|
|
|
|
|
|
|
|
package google
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
"log"
|
|
|
|
"reflect"
|
|
|
|
"strconv"
|
|
|
|
|
|
|
|
"github.com/hashicorp/terraform/helper/schema"
|
|
|
|
"github.com/hashicorp/terraform/helper/validation"
|
|
|
|
)
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControl() *schema.Resource {
|
|
|
|
return &schema.Resource{
|
|
|
|
Create: resourceStorageObjectAccessControlCreate,
|
|
|
|
Read: resourceStorageObjectAccessControlRead,
|
|
|
|
Update: resourceStorageObjectAccessControlUpdate,
|
|
|
|
Delete: resourceStorageObjectAccessControlDelete,
|
|
|
|
|
|
|
|
Importer: &schema.ResourceImporter{
|
|
|
|
State: resourceStorageObjectAccessControlImport,
|
|
|
|
},
|
|
|
|
|
|
|
|
Schema: map[string]*schema.Schema{
|
|
|
|
"bucket": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Required: true,
|
|
|
|
DiffSuppressFunc: compareSelfLinkOrResourceName,
|
|
|
|
},
|
|
|
|
"entity": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Required: true,
|
|
|
|
},
|
|
|
|
"object": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Required: true,
|
|
|
|
},
|
|
|
|
"role": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Required: true,
|
|
|
|
ValidateFunc: validation.StringInSlice([]string{"OWNER", "READER"}, false),
|
|
|
|
},
|
|
|
|
"domain": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Computed: true,
|
|
|
|
},
|
|
|
|
"email": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Computed: true,
|
|
|
|
},
|
|
|
|
"entity_id": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Computed: true,
|
|
|
|
},
|
|
|
|
"generation": {
|
|
|
|
Type: schema.TypeInt,
|
|
|
|
Computed: true,
|
|
|
|
},
|
|
|
|
"project_team": {
|
|
|
|
Type: schema.TypeList,
|
|
|
|
Computed: true,
|
|
|
|
MaxItems: 1,
|
|
|
|
Elem: &schema.Resource{
|
|
|
|
Schema: map[string]*schema.Schema{
|
|
|
|
"project_number": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Optional: true,
|
|
|
|
},
|
|
|
|
"team": {
|
|
|
|
Type: schema.TypeString,
|
|
|
|
Optional: true,
|
|
|
|
ValidateFunc: validation.StringInSlice([]string{"editors", "owners", "viewers", ""}, false),
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControlCreate(d *schema.ResourceData, meta interface{}) error {
|
|
|
|
config := meta.(*Config)
|
|
|
|
|
|
|
|
obj := make(map[string]interface{})
|
|
|
|
bucketProp, err := expandStorageObjectAccessControlBucket(d.Get("bucket"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("bucket"); !isEmptyValue(reflect.ValueOf(bucketProp)) && (ok || !reflect.DeepEqual(v, bucketProp)) {
|
|
|
|
obj["bucket"] = bucketProp
|
|
|
|
}
|
|
|
|
entityProp, err := expandStorageObjectAccessControlEntity(d.Get("entity"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("entity"); !isEmptyValue(reflect.ValueOf(entityProp)) && (ok || !reflect.DeepEqual(v, entityProp)) {
|
|
|
|
obj["entity"] = entityProp
|
|
|
|
}
|
|
|
|
objectProp, err := expandStorageObjectAccessControlObject(d.Get("object"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("object"); !isEmptyValue(reflect.ValueOf(objectProp)) && (ok || !reflect.DeepEqual(v, objectProp)) {
|
|
|
|
obj["object"] = objectProp
|
|
|
|
}
|
|
|
|
roleProp, err := expandStorageObjectAccessControlRole(d.Get("role"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("role"); !isEmptyValue(reflect.ValueOf(roleProp)) && (ok || !reflect.DeepEqual(v, roleProp)) {
|
|
|
|
obj["role"] = roleProp
|
|
|
|
}
|
|
|
|
|
|
|
|
url, err := replaceVars(d, config, "https://www.googleapis.com/storage/v1/b/{{bucket}}/o/{{object}}/acl")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
log.Printf("[DEBUG] Creating new ObjectAccessControl: %#v", obj)
|
|
|
|
res, err := sendRequest(config, "POST", url, obj)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("Error creating ObjectAccessControl: %s", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Store the ID now
|
|
|
|
id, err := replaceVars(d, config, "{{bucket}}/{{object}}/{{entity}}")
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("Error constructing id: %s", err)
|
|
|
|
}
|
|
|
|
d.SetId(id)
|
|
|
|
|
|
|
|
log.Printf("[DEBUG] Finished creating ObjectAccessControl %q: %#v", d.Id(), res)
|
|
|
|
|
|
|
|
return resourceStorageObjectAccessControlRead(d, meta)
|
|
|
|
}
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControlRead(d *schema.ResourceData, meta interface{}) error {
|
|
|
|
config := meta.(*Config)
|
|
|
|
|
|
|
|
url, err := replaceVars(d, config, "https://www.googleapis.com/storage/v1/b/{{bucket}}/o/{{object}}/acl/{{entity}}")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
res, err := sendRequest(config, "GET", url, nil)
|
|
|
|
if err != nil {
|
|
|
|
return handleNotFoundError(err, d, fmt.Sprintf("StorageObjectAccessControl %q", d.Id()))
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("bucket", flattenStorageObjectAccessControlBucket(res["bucket"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("domain", flattenStorageObjectAccessControlDomain(res["domain"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("email", flattenStorageObjectAccessControlEmail(res["email"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("entity", flattenStorageObjectAccessControlEntity(res["entity"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("entity_id", flattenStorageObjectAccessControlEntityId(res["entityId"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("generation", flattenStorageObjectAccessControlGeneration(res["generation"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("object", flattenStorageObjectAccessControlObject(res["object"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("project_team", flattenStorageObjectAccessControlProjectTeam(res["projectTeam"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
if err := d.Set("role", flattenStorageObjectAccessControlRole(res["role"], d)); err != nil {
|
2018-10-17 22:38:59 +00:00
|
|
|
return fmt.Errorf("Error reading ObjectAccessControl: %s", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControlUpdate(d *schema.ResourceData, meta interface{}) error {
|
|
|
|
config := meta.(*Config)
|
|
|
|
|
|
|
|
obj := make(map[string]interface{})
|
|
|
|
bucketProp, err := expandStorageObjectAccessControlBucket(d.Get("bucket"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("bucket"); !isEmptyValue(reflect.ValueOf(v)) && (ok || !reflect.DeepEqual(v, bucketProp)) {
|
|
|
|
obj["bucket"] = bucketProp
|
|
|
|
}
|
|
|
|
entityProp, err := expandStorageObjectAccessControlEntity(d.Get("entity"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("entity"); !isEmptyValue(reflect.ValueOf(v)) && (ok || !reflect.DeepEqual(v, entityProp)) {
|
|
|
|
obj["entity"] = entityProp
|
|
|
|
}
|
|
|
|
objectProp, err := expandStorageObjectAccessControlObject(d.Get("object"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("object"); !isEmptyValue(reflect.ValueOf(v)) && (ok || !reflect.DeepEqual(v, objectProp)) {
|
|
|
|
obj["object"] = objectProp
|
|
|
|
}
|
|
|
|
roleProp, err := expandStorageObjectAccessControlRole(d.Get("role"), d, config)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
} else if v, ok := d.GetOkExists("role"); !isEmptyValue(reflect.ValueOf(v)) && (ok || !reflect.DeepEqual(v, roleProp)) {
|
|
|
|
obj["role"] = roleProp
|
|
|
|
}
|
|
|
|
|
|
|
|
url, err := replaceVars(d, config, "https://www.googleapis.com/storage/v1/b/{{bucket}}/o/{{object}}/acl/{{entity}}")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
log.Printf("[DEBUG] Updating ObjectAccessControl %q: %#v", d.Id(), obj)
|
|
|
|
_, err = sendRequest(config, "PUT", url, obj)
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("Error updating ObjectAccessControl %q: %s", d.Id(), err)
|
|
|
|
}
|
|
|
|
|
|
|
|
return resourceStorageObjectAccessControlRead(d, meta)
|
|
|
|
}
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControlDelete(d *schema.ResourceData, meta interface{}) error {
|
|
|
|
config := meta.(*Config)
|
|
|
|
|
|
|
|
url, err := replaceVars(d, config, "https://www.googleapis.com/storage/v1/b/{{bucket}}/o/{{object}}/acl/{{entity}}")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
var obj map[string]interface{}
|
|
|
|
log.Printf("[DEBUG] Deleting ObjectAccessControl %q", d.Id())
|
|
|
|
res, err := sendRequest(config, "DELETE", url, obj)
|
|
|
|
if err != nil {
|
|
|
|
return handleNotFoundError(err, d, "ObjectAccessControl")
|
|
|
|
}
|
|
|
|
|
|
|
|
log.Printf("[DEBUG] Finished deleting ObjectAccessControl %q: %#v", d.Id(), res)
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func resourceStorageObjectAccessControlImport(d *schema.ResourceData, meta interface{}) ([]*schema.ResourceData, error) {
|
|
|
|
config := meta.(*Config)
|
|
|
|
parseImportId([]string{"(?P<bucket>[^/]+)/(?P<object>[^/]+)/(?P<entity>[^/]+)"}, d, config)
|
|
|
|
|
|
|
|
// Replace import id for the resource id
|
|
|
|
id, err := replaceVars(d, config, "{{bucket}}/{{object}}/{{entity}}")
|
|
|
|
if err != nil {
|
|
|
|
return nil, fmt.Errorf("Error constructing id: %s", err)
|
|
|
|
}
|
|
|
|
d.SetId(id)
|
|
|
|
|
|
|
|
return []*schema.ResourceData{d}, nil
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlBucket(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
if v == nil {
|
|
|
|
return v
|
|
|
|
}
|
|
|
|
return ConvertSelfLinkToV1(v.(string))
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlDomain(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlEmail(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlEntity(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlEntityId(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlGeneration(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
// Handles the string fixed64 format
|
|
|
|
if strVal, ok := v.(string); ok {
|
|
|
|
if intVal, err := strconv.ParseInt(strVal, 10, 64); err == nil {
|
|
|
|
return intVal
|
|
|
|
} // let terraform core handle it if we can't convert the string to an int.
|
|
|
|
}
|
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlObject(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlProjectTeam(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
if v == nil {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
original := v.(map[string]interface{})
|
2018-11-16 20:45:58 +00:00
|
|
|
if len(original) == 0 {
|
|
|
|
return nil
|
|
|
|
}
|
2018-10-17 22:38:59 +00:00
|
|
|
transformed := make(map[string]interface{})
|
|
|
|
transformed["project_number"] =
|
2018-11-21 21:57:16 +00:00
|
|
|
flattenStorageObjectAccessControlProjectTeamProjectNumber(original["projectNumber"], d)
|
2018-10-17 22:38:59 +00:00
|
|
|
transformed["team"] =
|
2018-11-21 21:57:16 +00:00
|
|
|
flattenStorageObjectAccessControlProjectTeamTeam(original["team"], d)
|
2018-10-17 22:38:59 +00:00
|
|
|
return []interface{}{transformed}
|
|
|
|
}
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlProjectTeamProjectNumber(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlProjectTeamTeam(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
2018-11-21 21:57:16 +00:00
|
|
|
func flattenStorageObjectAccessControlRole(v interface{}, d *schema.ResourceData) interface{} {
|
2018-10-17 22:38:59 +00:00
|
|
|
return v
|
|
|
|
}
|
|
|
|
|
|
|
|
func expandStorageObjectAccessControlBucket(v interface{}, d *schema.ResourceData, config *Config) (interface{}, error) {
|
|
|
|
return v, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func expandStorageObjectAccessControlEntity(v interface{}, d *schema.ResourceData, config *Config) (interface{}, error) {
|
|
|
|
return v, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func expandStorageObjectAccessControlObject(v interface{}, d *schema.ResourceData, config *Config) (interface{}, error) {
|
|
|
|
return v, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func expandStorageObjectAccessControlRole(v interface{}, d *schema.ResourceData, config *Config) (interface{}, error) {
|
|
|
|
return v, nil
|
|
|
|
}
|