public/terraform-provider-google
0
0
Fork 0
mirror of https://github.com/letic/terraform-provider-google.git synced 2024-07-03 08:42:39 +00:00
Code Issues Projects Releases Wiki Activity
3bceb8f951
terraform-provider-google/google/iam_storage_bucket.go
Vincent Roseberry 3bceb8f951
Add IAM support for storage bucket (#822) 
* Add IAM support for storage bucket
* Add documentation
* Test multiple roles
2017-12-07 13:12:25 -08:00

85 lines
2.2 KiB
Go
Raw Blame History

package google
import (
"fmt"
"github.com/hashicorp/terraform/helper/schema"
"google.golang.org/api/cloudresourcemanager/v1"
"google.golang.org/api/storage/v1"
)
var IamStorageBucketSchema = map[string]*schema.Schema{
"bucket": &schema.Schema{
Type: schema.TypeString,
Required: true,
ForceNew: true,
},
}
type StorageBucketIamUpdater struct {
bucket string
Config *Config
}
func NewStorageBucketIamUpdater(d *schema.ResourceData, config *Config) (ResourceIamUpdater, error) {
bucket := d.Get("bucket").(string)
return &StorageBucketIamUpdater{
bucket: bucket,
Config: config,
}, nil
}
func (u *StorageBucketIamUpdater) GetResourceIamPolicy() (*cloudresourcemanager.Policy, error) {
p, err := u.Config.clientStorage.Buckets.GetIamPolicy(u.bucket).Do()
if err != nil {
return nil, fmt.Errorf("Error retrieving IAM policy for %s: %s", u.DescribeResource(), err)
}
cloudResourcePolicy, err := storageToResourceManagerPolicy(p)
if err != nil {
return nil, fmt.Errorf("Invalid IAM policy for %s: %s", u.DescribeResource(), err)
}
return cloudResourcePolicy, nil
}
func (u *StorageBucketIamUpdater) SetResourceIamPolicy(policy *cloudresourcemanager.Policy) error {
storagePolicy, err := resourceManagerToStoragePolicy(policy)
if err != nil {
return fmt.Errorf("Invalid IAM policy for %s: %s", u.DescribeResource(), err)
}
_, err = u.Config.clientStorage.Buckets.SetIamPolicy(u.bucket, storagePolicy).Do()
if err != nil {
return fmt.Errorf("Error setting IAM policy for %s: %s", u.DescribeResource(), err)
}
return nil
}
func (u *StorageBucketIamUpdater) GetResourceId() string {
return u.bucket
}
func (u *StorageBucketIamUpdater) GetMutexKey() string {
return fmt.Sprintf("iam-storage-bucket-%s", u.bucket)
}
func (u *StorageBucketIamUpdater) DescribeResource() string {
return fmt.Sprintf("Storage Bucket %q", u.bucket)
}
func resourceManagerToStoragePolicy(p *cloudresourcemanager.Policy) (policy *storage.Policy, err error) {
policy = &storage.Policy{}
err = Convert(p, policy)
return
}
func storageToResourceManagerPolicy(p *storage.Policy) (policy *cloudresourcemanager.Policy, err error) {
policy = &cloudresourcemanager.Policy{}
err = Convert(p, policy)
return
}
Reference in New Issue View Git Blame Copy Permalink