Merge pull request #360 from aquasecurity/feature/monitoring-system

feat: implementation of monitoring system

Author: semyonmor

aquasec/data_monitoring_system.go

@@ -0,0 +1,71 @@
+package aquasec
+
+import (
+	"context"
+
+	"github.com/aquasecurity/terraform-provider-aquasec/client"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func dataSourceMonitoringSystem() *schema.Resource {
+	return &schema.Resource{
+		ReadContext: dataSourceMonitoringSystemRead,
+		Schema: map[string]*schema.Schema{
+			"monitors": {
+				Type:        schema.TypeList,
+				Description: "List of existing monitoring systems.",
+				Computed:    true,
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						"name": {
+							Type:        schema.TypeString,
+							Description: "",
+							Computed:    true,
+						},
+						"token": {
+							Type:        schema.TypeString,
+							Description: "",
+							Computed:    true,
+							Sensitive:   true,
+						},
+						"type": {
+							Type:        schema.TypeString,
+							Description: "",
+							Computed:    true,
+						},
+						"enabled": {
+							Type:        schema.TypeBool,
+							Description: "",
+							Computed:    true,
+						},
+						"interval": {
+							Type:        schema.TypeInt,
+							Description: "",
+							Computed:    true,
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func dataSourceMonitoringSystemRead(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	ac := m.(*client.Client)
+	result, err := ac.GetMonitoringSystems()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+	monitors := flattenMonitoringSystem(&result)
+	if err := d.Set("monitors", monitors); err != nil {
+		return diag.FromErr(err)
+	}
+
+	if len(result) == 0 {
+		d.SetId("")
+		return nil
+	}
+	d.SetId(result[0].Name)
+	return nil
+}

aquasec/data_monitoring_system_test.go

@@ -0,0 +1,68 @@
+package aquasec
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/terraform"
+)
+
+func TestAquasecMonitoringSystemDataSourceAny(t *testing.T) {
+	t.Skip()
+	t.Parallel()
+
+	name := "Prometheus"
+	msType := "prometheus"
+	token := "tf-acc-token"
+	enabled := true
+	interval := 30
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:  func() { testAccPreCheck(t) },
+		Providers: testAccProviders,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccMonitoringSystemDataSourceAny(name, msType, token, enabled, interval),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckAquasecMonitoringSystemDataSourceExists("data.aquasec_monitoring_systems.test_ms"),
+					resource.TestCheckResourceAttr("data.aquasec_monitoring_systems.test_ms", "monitors.0.name", name),
+					resource.TestCheckResourceAttr("data.aquasec_monitoring_systems.test_ms", "monitors.0.type", msType),
+					resource.TestCheckResourceAttr("data.aquasec_monitoring_systems.test_ms", "monitors.0.token", token),
+					resource.TestCheckResourceAttr("data.aquasec_monitoring_systems.test_ms", "monitors.0.enabled", fmt.Sprintf("%t", enabled)),
+					resource.TestCheckResourceAttr("data.aquasec_monitoring_systems.test_ms", "monitors.0.interval", fmt.Sprintf("%d", interval))),
+			},
+		},
+	})
+}
+
+func testAccMonitoringSystemDataSourceAny(name, msType, token string, enabled bool, interval int) string {
+	return fmt.Sprintf(`
+resource "aquasec_monitoring_system" "any" {
+  name     = "%s"
+  type     = "%s"
+  token    = "%s"
+  enabled  = %t
+  interval = %d
+}
+
+data "aquasec_monitoring_systems" "test_ms" {
+  depends_on = [
+    aquasec_monitoring_system.any
+  ]
+}
+`, name, msType, token, enabled, interval)
+}
+
+func testAccCheckAquasecMonitoringSystemDataSourceExists(n string) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		rs, ok := s.RootModule().Resources[n]
+		if !ok {
+			return NewNotFoundErrorf("%s in state", n)
+		}
+		if rs.Primary.ID == "" {
+			return NewNotFoundErrorf("ID for %s in state", n)
+		}
+		return nil
+	}
+}

aquasec/provider.go

@@ -145,6 +145,7 @@ func Provider(v string) *schema.Provider {
 			"aquasec_scanner_group":           resourceScannerGroup(),
 			"aquasec_log_management":          resourceLogManagement(),
 			"aquasec_serverless_application":  resourceServerlessApplication(),
+			"aquasec_monitoring_system":       resourceMonitoringSystem(),
 		},
 		DataSourcesMap: map[string]*schema.Resource{
 			"aquasec_users":                       dataSourceUsers(),
@@ -182,6 +183,7 @@ func Provider(v string) *schema.Provider {
 			"aquasec_vmware_assurance_policy": dataVmwareAssurancePolicy(),
 			"aquasec_log_managements":         dataLogManagement(),
 			"aquasec_serverless_applications": dataSourceServerlessApplication(),
+			"aquasec_monitoring_systems":      dataSourceMonitoringSystem(),
 		},
 		ConfigureContextFunc: providerConfigure,
 	}

aquasec/resource_monitoring_system.go

@@ -0,0 +1,164 @@
+package aquasec
+
+import (
+	"context"
+
+	"github.com/aquasecurity/terraform-provider-aquasec/client"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func resourceMonitoringSystem() *schema.Resource {
+	return &schema.Resource{
+		CreateContext: resourceMonitoringSystemCreate,
+		ReadContext:   resourceMonitoringSystemRead,
+		UpdateContext: resourceMonitoringSYstemUpdate,
+		DeleteContext: resourceMonitoringSystemDelete,
+		Importer: &schema.ResourceImporter{
+			StateContext: schema.ImportStatePassthroughContext,
+		},
+		Schema: map[string]*schema.Schema{
+			"name": {
+				Type:        schema.TypeString,
+				Description: "The name of the monitoring system.",
+				Optional:    true,
+				Default:     "Prometheus",
+			},
+			"type": {
+				Type:        schema.TypeString,
+				Description: "The type of the monitoring system.",
+				Required:    true,
+			},
+			"token": {
+				Type:        schema.TypeString,
+				Description: "The authentication token for the monitoring system.",
+				Optional:    true,
+				Sensitive:   true,
+			},
+			"enabled": {
+				Type:        schema.TypeBool,
+				Description: "Indicates whether the monitoring system is enabled.",
+				Required:    true,
+			},
+			"interval": {
+				Type:        schema.TypeInt,
+				Description: "The interval in minutes for monitoring checks.",
+				Optional:    true,
+			},
+		},
+	}
+}
+
+func resourceMonitoringSystemCreate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	ac := m.(*client.Client)
+	name := d.Get("name").(string)
+	enabled := d.Get("enabled").(bool)
+	interval := d.Get("interval").(int)
+	typeMonSys := d.Get("type").(string)
+	var tokenPtr *string
+	if v, ok := d.GetOk("token"); ok {
+		s := v.(string)
+		if s != "" {
+			tokenPtr = &s
+		}
+	}
+
+	monitoringSystem := client.MonitoringSystem{
+		Name:     name,
+		Enabled:  enabled,
+		Interval: interval,
+		Token:    tokenPtr,
+		Type:     typeMonSys,
+	}
+
+	err := ac.CreateMonitoringSystem(monitoringSystem)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	d.SetId(name)
+	return resourceMonitoringSystemRead(ctx, d, m)
+}
+
+func resourceMonitoringSystemRead(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	ac := m.(*client.Client)
+	name := d.Id()
+	if name == "" {
+		if v, ok := d.GetOk("name"); ok {
+			name = v.(string)
+		}
+	}
+
+	monitor, err := ac.GetMonitoringSystem(name)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	if monitor == nil {
+		d.SetId("")
+		return nil
+	}
+	_ = d.Set("name", monitor.Name)
+	_ = d.Set("type", monitor.Type)
+	_ = d.Set("enabled", monitor.Enabled)
+	_ = d.Set("interval", monitor.Interval)
+	if monitor.Token != nil {
+		_ = d.Set("token", *monitor.Token)
+	} else {
+		_ = d.Set("token", "")
+	}
+	d.SetId(monitor.Name)
+	return nil
+}
+
+func resourceMonitoringSYstemUpdate(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	ac := m.(*client.Client)
+	oldName := d.Id()
+
+	if d.HasChanges("interval", "enabled", "token", "type") {
+		enabled := d.Get("enabled").(bool)
+		interval := d.Get("interval").(int)
+		msType := d.Get("type").(string)
+		var tokenPtr *string
+		if v, ok := d.GetOk("token"); ok {
+			s := v.(string)
+			if s != "" {
+				tokenPtr = &s
+			}
+		}
+
+		monitor := client.MonitoringSystem{
+			Name:     oldName,
+			Enabled:  enabled,
+			Token:    tokenPtr,
+			Interval: interval,
+			Type:     msType,
+		}
+		err := ac.UpdateMonitoringSystem(monitor)
+		if err != nil {
+			return diag.FromErr(err)
+		}
+	}
+	return resourceMonitoringSystemRead(ctx, d, m)
+}
+func resourceMonitoringSystemDelete(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	ac := m.(*client.Client)
+	name := d.Get("name").(string)
+	enabled := false
+	interval := d.Get("interval").(int)
+	msType := d.Get("type").(string)
+
+	monitoringSystem := client.MonitoringSystem{
+		Name:     name,
+		Enabled:  enabled,
+		Interval: interval,
+		Type:     msType,
+	}
+	err := ac.DeleteMonitoringSystem(monitoringSystem)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	d.SetId("")
+	return nil
+}

aquasec/resource_monitoring_system_test.go

@@ -0,0 +1,70 @@
+package aquasec
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/terraform"
+)
+
+func TestAccAquasecMonitoringSystem(t *testing.T) {
+	t.Skip()
+	t.Parallel()
+
+	name := "Prometheus"
+	msType := "prometheus"
+	token := "tf-acc-test-token"
+	enabled := true
+	interval := 30
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { testAccPreCheck(t) },
+		Providers:    testAccProviders,
+		CheckDestroy: CheckDestroy("aquasec_monitoring_system.prom_mon"),
+		Steps: []resource.TestStep{
+			{
+				Config: testAccMonitoringSystemResourceConfig(name, msType, token, enabled, interval),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckAquasecMonitoringSystemExists("aquasec_monitoring_system.prom_mon"),
+					resource.TestCheckResourceAttr("aquasec_monitoring_system.prom_mon", "name", name),
+					resource.TestCheckResourceAttr("aquasec_monitoring_system.prom_mon", "type", msType),
+					resource.TestCheckResourceAttr("aquasec_monitoring_system.prom_mon", "enabled", fmt.Sprintf("%t", enabled)),
+					resource.TestCheckResourceAttr("aquasec_monitoring_system.prom_mon", "interval", fmt.Sprintf("%d", interval)),
+				),
+			},
+			{
+				ResourceName:      "aquasec_monitoring_system.prom_mon",
+				ImportState:       true,
+				ImportStateVerify: true,
+				// If token isn't returned by Read or is write-only, ignore it during import verification.
+				ImportStateVerifyIgnore: []string{"token", "last_updated"},
+			},
+		},
+	})
+}
+
+func testAccMonitoringSystemResourceConfig(name, msType, token string, enabled bool, interval int) string {
+	return fmt.Sprintf(`
+resource "aquasec_monitoring_system" "prom_mon" {
+  name        = "%s"
+  type        = "%s"
+  token       = "%s"
+  enabled     = %t
+  interval    = %d
+}
+`, name, msType, token, enabled, interval)
+}
+
+func testAccCheckAquasecMonitoringSystemExists(n string) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		rs, ok := s.RootModule().Resources[n]
+		if !ok {
+			return NewNotFoundErrorf("%s in state", n)
+		}
+		if rs.Primary.ID == "" {
+			return NewNotFoundErrorf("ID for %s in state", n)
+		}
+		return nil
+	}
+}