mirror of
https://github.com/letic/terraform-provider-google.git
synced 2024-10-15 07:27:15 +00:00
6d0b87ec1e
* s/TestAccGoogle/TestAcc/ * add back import * reorder imports
197 lines
5.0 KiB
Go
197 lines
5.0 KiB
Go
package google
|
|
|
|
import (
|
|
"fmt"
|
|
"reflect"
|
|
"sort"
|
|
"testing"
|
|
|
|
"github.com/hashicorp/terraform/helper/acctest"
|
|
"github.com/hashicorp/terraform/helper/resource"
|
|
"github.com/hashicorp/terraform/terraform"
|
|
)
|
|
|
|
func TestAccProjectIamCustomRole_basic(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
roleId := "tfIamCustomRole" + acctest.RandString(10)
|
|
|
|
resource.Test(t, resource.TestCase{
|
|
PreCheck: func() { testAccPreCheck(t) },
|
|
Providers: testAccProviders,
|
|
CheckDestroy: testAccCheckGoogleProjectIamCustomRoleDestroy,
|
|
Steps: []resource.TestStep{
|
|
{
|
|
Config: testAccCheckGoogleProjectIamCustomRole_basic(roleId),
|
|
Check: testAccCheckGoogleProjectIamCustomRole(
|
|
"google_project_iam_custom_role.foo",
|
|
"My Custom Role",
|
|
"foo",
|
|
"GA",
|
|
[]string{"iam.roles.list"}),
|
|
},
|
|
{
|
|
Config: testAccCheckGoogleProjectIamCustomRole_update(roleId),
|
|
Check: testAccCheckGoogleProjectIamCustomRole(
|
|
"google_project_iam_custom_role.foo",
|
|
"My Custom Role Updated",
|
|
"bar",
|
|
"BETA",
|
|
[]string{"iam.roles.list", "iam.roles.create", "iam.roles.delete"}),
|
|
},
|
|
},
|
|
})
|
|
}
|
|
|
|
func TestAccProjectIamCustomRole_undelete(t *testing.T) {
|
|
t.Parallel()
|
|
|
|
roleId := "tfIamCustomRole" + acctest.RandString(10)
|
|
|
|
resource.Test(t, resource.TestCase{
|
|
PreCheck: func() { testAccPreCheck(t) },
|
|
Providers: testAccProviders,
|
|
CheckDestroy: testAccCheckGoogleProjectIamCustomRoleDestroy,
|
|
Steps: []resource.TestStep{
|
|
{
|
|
Config: testAccCheckGoogleProjectIamCustomRole_basic(roleId),
|
|
Check: testAccCheckGoogleProjectIamCustomRoleDeletionStatus("google_project_iam_custom_role.foo", false),
|
|
},
|
|
// Soft-delete
|
|
{
|
|
Config: testAccCheckGoogleProjectIamCustomRole_deleted(roleId),
|
|
Check: testAccCheckGoogleProjectIamCustomRoleDeletionStatus("google_project_iam_custom_role.foo", true),
|
|
},
|
|
// Undelete
|
|
{
|
|
Config: testAccCheckGoogleProjectIamCustomRole_basic(roleId),
|
|
Check: testAccCheckGoogleProjectIamCustomRoleDeletionStatus("google_project_iam_custom_role.foo", false),
|
|
},
|
|
},
|
|
})
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRoleDestroy(s *terraform.State) error {
|
|
config := testAccProvider.Meta().(*Config)
|
|
|
|
for _, rs := range s.RootModule().Resources {
|
|
if rs.Type != "google_project_iam_custom_role" {
|
|
continue
|
|
}
|
|
|
|
role, err := config.clientIAM.Projects.Roles.Get(rs.Primary.ID).Do()
|
|
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if !role.Deleted {
|
|
return fmt.Errorf("Iam custom role still exists")
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRole(n, title, description, stage string, permissions []string) resource.TestCheckFunc {
|
|
return func(s *terraform.State) error {
|
|
rs, ok := s.RootModule().Resources[n]
|
|
if !ok {
|
|
return fmt.Errorf("Not found: %s", n)
|
|
}
|
|
|
|
if rs.Primary.ID == "" {
|
|
return fmt.Errorf("No ID is set")
|
|
}
|
|
|
|
config := testAccProvider.Meta().(*Config)
|
|
role, err := config.clientIAM.Projects.Roles.Get(rs.Primary.ID).Do()
|
|
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if title != role.Title {
|
|
return fmt.Errorf("Incorrect title. Expected %q, got %q", title, role.Title)
|
|
}
|
|
|
|
if description != role.Description {
|
|
return fmt.Errorf("Incorrect description. Expected %q, got %q", description, role.Description)
|
|
}
|
|
|
|
if stage != role.Stage {
|
|
return fmt.Errorf("Incorrect stage. Expected %q, got %q", stage, role.Stage)
|
|
}
|
|
|
|
sort.Strings(permissions)
|
|
sort.Strings(role.IncludedPermissions)
|
|
if !reflect.DeepEqual(permissions, role.IncludedPermissions) {
|
|
return fmt.Errorf("Incorrect permissions. Expected %q, got %q", permissions, role.IncludedPermissions)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRoleDeletionStatus(n string, deleted bool) resource.TestCheckFunc {
|
|
return func(s *terraform.State) error {
|
|
rs, ok := s.RootModule().Resources[n]
|
|
if !ok {
|
|
return fmt.Errorf("Not found: %s", n)
|
|
}
|
|
|
|
if rs.Primary.ID == "" {
|
|
return fmt.Errorf("No ID is set")
|
|
}
|
|
|
|
config := testAccProvider.Meta().(*Config)
|
|
role, err := config.clientIAM.Projects.Roles.Get(rs.Primary.ID).Do()
|
|
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if deleted != role.Deleted {
|
|
return fmt.Errorf("Incorrect deletion status. Expected %t, got %t", deleted, role.Deleted)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRole_basic(roleId string) string {
|
|
return fmt.Sprintf(`
|
|
resource "google_project_iam_custom_role" "foo" {
|
|
role_id = "%s"
|
|
title = "My Custom Role"
|
|
description = "foo"
|
|
permissions = ["iam.roles.list"]
|
|
}
|
|
`, roleId)
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRole_deleted(roleId string) string {
|
|
return fmt.Sprintf(`
|
|
resource "google_project_iam_custom_role" "foo" {
|
|
role_id = "%s"
|
|
title = "My Custom Role"
|
|
description = "foo"
|
|
permissions = ["iam.roles.list"]
|
|
deleted = true
|
|
}
|
|
`, roleId)
|
|
}
|
|
|
|
func testAccCheckGoogleProjectIamCustomRole_update(roleId string) string {
|
|
return fmt.Sprintf(`
|
|
resource "google_project_iam_custom_role" "foo" {
|
|
role_id = "%s"
|
|
title = "My Custom Role Updated"
|
|
description = "bar"
|
|
permissions = ["iam.roles.list", "iam.roles.create", "iam.roles.delete"]
|
|
stage = "BETA"
|
|
}
|
|
`, roleId)
|
|
}
|