Merge pull request #1 from bkondakor/claude/add-notification-config-vCk1v

Add notification rule, project/team scoping, and publisher data source

Author: bkondakor

.golangci.yml

@@ -104,13 +104,15 @@ linters:
         - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.Int32Attribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.ListAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.ListNestedAttribute$"
+        - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.SetAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.NestedAttributeObject$"
         - "^github.com/hashicorp/terraform-plugin-framework/resource/schema\\.SingleNestedAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.Schema$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.StringAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.BoolAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.ListAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.ListNestedAttribute$"
+        - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.SetAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.NestedAttributeObject$"
         - "^github.com/hashicorp/terraform-plugin-framework/datasource/schema\\.SingleNestedAttribute$"
         - "^github.com/hashicorp/terraform-plugin-framework/providerserver\\.ServeOpts$"
@@ -130,6 +132,10 @@ linters:
         - "^github.com/DependencyTrack/client-go\\.SortOptions$"
         - "^github.com/DependencyTrack/client-go\\.Component$"
         - "^github.com/DependencyTrack/client-go\\.ManagedUser$"
+        - "^github.com/DependencyTrack/client-go\\.NotificationRule$"
+        - "^github.com/DependencyTrack/client-go\\.NotificationPublisher$"
+        - "^github.com/DependencyTrack/client-go\\.GetAllRulesFilterOptions$"
+        - "^github.com/DependencyTrack/client-go\\.CreateScheduledNotificationRuleRequest$"
         - "^terraform-provider-dependencytrack/internal/provider\\.[a-z][a-zA-Z]*Resource$"
         - "^terraform-provider-dependencytrack/internal/provider\\.[a-z][a-zA-Z]*DataSource$"
         - "^terraform-provider-dependencytrack/internal/provider\\.dependencyTrackProvider$"

docs/data-sources/notification_publisher.md

@@ -0,0 +1,38 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "dependencytrack_notification_publisher Data Source - dependencytrack"
+subcategory: ""
+description: |-
+  Fetches a Notification Publisher by name.
+---
+
+# dependencytrack_notification_publisher (Data Source)
+
+Fetches a Notification Publisher by name.
+
+## Example Usage
+
+```terraform
+# Look up a built-in notification publisher by name
+data "dependencytrack_notification_publisher" "webhook" {
+  name = "Outbound Webhook"
+}
+
+# Other available publishers:
+# "Slack", "Microsoft Teams", "Mattermost", "Email",
+# "Console", "Cisco Webex", "Jira"
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `name` (String) Name of the Notification Publisher to look up. Built-in publishers include: Slack, Microsoft Teams, Mattermost, Email, Console, Outbound Webhook, Cisco Webex, Jira.
+
+### Read-Only
+
+- `default_publisher` (Boolean) Whether this is a default built-in publisher.
+- `description` (String) Description of the Notification Publisher.
+- `id` (String) UUID of the Notification Publisher.
+- `publisher_class` (String) Fully-qualified class name of the publisher implementation.

docs/data-sources/project.md

@@ -3,20 +3,27 @@
 page_title: "dependencytrack_project Data Source - dependencytrack"
 subcategory: ""
 description: |-
-  Fetch an existing Project by name and version. Requires the project to have a version defined on DependencyTrack.
+  Fetch an existing Project by name and version, or by name with is_latest set to true.
 ---
 
 # dependencytrack_project (Data Source)
 
-Fetch an existing Project by name and version. Requires the project to have a version defined on DependencyTrack.
+Fetch an existing Project by name and version, or by name with is_latest set to true.
 
 ## Example Usage
 
 ```terraform
+# Lookup by name and version
 data "dependencytrack_project" "example" {
   name    = "Example"
   version = "v1"
 }
+
+# Lookup the latest version (API 4.12+)
+data "dependencytrack_project" "latest" {
+  name      = "Example"
+  is_latest = true
+}
 ```
 
 <!-- schema generated by tfplugindocs -->
@@ -25,12 +32,12 @@ data "dependencytrack_project" "example" {
 ### Required
 
 - `name` (String) Name of the project to find.
-- `version` (String) Version of the project to find.
 
 ### Optional
 
-- `is_latest` (Boolean) Whether the project is the latest version. Available in API 4.12+.
+- `is_latest` (Boolean) Whether the project is the latest version. When true, version is optional and the latest project version will be returned. Available in API 4.12+.
 - `parent` (String) UUID of a parent project, if nested.
+- `version` (String) Version of the project to find. Optional when is_latest is true.
 
 ### Read-Only
 

docs/resources/notification_rule.md

@@ -0,0 +1,77 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "dependencytrack_notification_rule Resource - dependencytrack"
+subcategory: ""
+description: |-
+  Manages a Notification Rule.
+---
+
+# dependencytrack_notification_rule (Resource)
+
+Manages a Notification Rule.
+
+## Example Usage
+
+```terraform
+# Look up the Outbound Webhook publisher
+data "dependencytrack_notification_publisher" "webhook" {
+  name = "Outbound Webhook"
+}
+
+# Event-driven notification rule for new vulnerabilities
+resource "dependencytrack_notification_rule" "vuln_webhook" {
+  name               = "Vulnerability Webhook"
+  scope              = "PORTFOLIO"
+  notification_level = "INFORMATIONAL"
+  publisher_id       = data.dependencytrack_notification_publisher.webhook.id
+  notify_on          = ["NEW_VULNERABILITY", "NEW_VULNERABLE_DEPENDENCY"]
+  publisher_config   = jsonencode({ destination = "https://example.com/webhook" })
+}
+
+# Scheduled notification rule for daily vulnerability summary
+resource "dependencytrack_notification_rule" "daily_summary" {
+  name                    = "Daily Vulnerability Summary"
+  scope                   = "PORTFOLIO"
+  notification_level      = "INFORMATIONAL"
+  trigger_type            = "SCHEDULE"
+  publisher_id            = data.dependencytrack_notification_publisher.webhook.id
+  notify_on               = ["NEW_VULNERABILITIES_SUMMARY"]
+  schedule_cron           = "0 8 * * *"
+  schedule_skip_unchanged = true
+  publisher_config        = jsonencode({ destination = "https://example.com/webhook" })
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `name` (String) Name of the Notification Rule.
+- `publisher_id` (String) UUID for the Notification Publisher to use.
+- `scope` (String) Scope of the Notification Rule. Valid values are 'SYSTEM' and 'PORTFOLIO'.
+
+### Optional
+
+- `enabled` (Boolean) Whether the Notification Rule is enabled. Defaults to `true`.
+- `log_successful_publish` (Boolean) Whether to log successful notification publishes. Defaults to `false`.
+- `message` (String) Custom message for the notification. Maximum 1024 characters.
+- `notification_level` (String) Notification level threshold. Valid values are 'INFORMATIONAL', 'WARNING', 'ERROR'.
+- `notify_children` (Boolean) Whether to also notify for child projects. Defaults to `true`.
+- `notify_on` (Set of String) Set of notification group names to notify on. For PORTFOLIO scope: NEW_VULNERABILITY, NEW_VULNERABLE_DEPENDENCY, PROJECT_AUDIT_CHANGE, BOM_CONSUMED, BOM_PROCESSED, BOM_PROCESSING_FAILED, BOM_VALIDATION_FAILED, VEX_CONSUMED, VEX_PROCESSED, POLICY_VIOLATION, PROJECT_CREATED, USER_CREATED, USER_DELETED. For PORTFOLIO scheduled: NEW_VULNERABILITIES_SUMMARY, NEW_POLICY_VIOLATIONS_SUMMARY. For SYSTEM scope: CONFIGURATION, DATASOURCE_MIRRORING, REPOSITORY, INTEGRATION, INDEXING_SERVICE, FILE_SYSTEM, ANALYZER.
+- `publisher_config` (String) Publisher-specific configuration (e.g. webhook URL, email address). Typically JSON.
+- `schedule_cron` (String) Cron expression for scheduled notifications. Only applicable when trigger_type is 'SCHEDULE'.
+- `schedule_skip_unchanged` (Boolean) Whether to skip sending scheduled notifications when there are no changes. Only applicable when trigger_type is 'SCHEDULE'. Defaults to `false`.
+- `trigger_type` (String) Trigger type for the Notification Rule. Valid values are 'EVENT' and 'SCHEDULE'. Defaults to 'EVENT'.
+
+### Read-Only
+
+- `id` (String) UUID for the Notification Rule as generated by DependencyTrack.
+
+## Import
+
+Import is supported using the following syntax:
+
+```shell
+terraform import dependencytrack_notification_rule.example <notification-rule-uuid>
+```

docs/resources/notification_rule_project.md

@@ -0,0 +1,29 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "dependencytrack_notification_rule_project Resource - dependencytrack"
+subcategory: ""
+description: |-
+  Manages an association of a Notification Rule to a Project. Only applicable for PORTFOLIO-scoped rules.
+---
+
+# dependencytrack_notification_rule_project (Resource)
+
+Manages an association of a Notification Rule to a Project. Only applicable for PORTFOLIO-scoped rules.
+
+## Example Usage
+
+```terraform
+# Scope a notification rule to a specific project
+resource "dependencytrack_notification_rule_project" "example" {
+  rule    = dependencytrack_notification_rule.vuln_webhook.id
+  project = dependencytrack_project.example.id
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `project` (String) UUID of the Project to associate with the Notification Rule.
+- `rule` (String) UUID of the Notification Rule.

docs/resources/notification_rule_tag.md

@@ -0,0 +1,29 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "dependencytrack_notification_rule_tag Resource - dependencytrack"
+subcategory: ""
+description: |-
+  Manages an association of a Notification Rule to a Tag. Only applicable for PORTFOLIO-scoped rules. Requires API version >= 4.12.
+---
+
+# dependencytrack_notification_rule_tag (Resource)
+
+Manages an association of a Notification Rule to a Tag. Only applicable for PORTFOLIO-scoped rules. Requires API version >= 4.12.
+
+## Example Usage
+
+```terraform
+# Scope a notification rule to projects with a specific tag
+resource "dependencytrack_notification_rule_tag" "example" {
+  rule = dependencytrack_notification_rule.vuln_webhook.id
+  tag  = dependencytrack_tag.example.name
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `rule` (String) UUID of the Notification Rule.
+- `tag` (String) Name of the Tag to associate with the Notification Rule.

docs/resources/notification_rule_team.md

@@ -0,0 +1,29 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "dependencytrack_notification_rule_team Resource - dependencytrack"
+subcategory: ""
+description: |-
+  Manages an association of a Notification Rule to a Team. Only applicable for rules using the Email publisher.
+---
+
+# dependencytrack_notification_rule_team (Resource)
+
+Manages an association of a Notification Rule to a Team. Only applicable for rules using the Email publisher.
+
+## Example Usage
+
+```terraform
+# Associate a team with an email notification rule
+resource "dependencytrack_notification_rule_team" "example" {
+  rule = dependencytrack_notification_rule.email_alerts.id
+  team = dependencytrack_team.security.id
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `rule` (String) UUID of the Notification Rule.
+- `team` (String) UUID of the Team to associate with the Notification Rule.

examples/data-sources/dependencytrack_notification_publisher/data-source.tf

@@ -0,0 +1,8 @@
+# Look up a built-in notification publisher by name
+data "dependencytrack_notification_publisher" "webhook" {
+  name = "Outbound Webhook"
+}
+
+# Other available publishers:
+# "Slack", "Microsoft Teams", "Mattermost", "Email",
+# "Console", "Cisco Webex", "Jira"

examples/resources/dependencytrack_notification_rule/resource.tf

@@ -0,0 +1,27 @@
+# Look up the Outbound Webhook publisher
+data "dependencytrack_notification_publisher" "webhook" {
+  name = "Outbound Webhook"
+}
+
+# Event-driven notification rule for new vulnerabilities
+resource "dependencytrack_notification_rule" "vuln_webhook" {
+  name               = "Vulnerability Webhook"
+  scope              = "PORTFOLIO"
+  notification_level = "INFORMATIONAL"
+  publisher_id       = data.dependencytrack_notification_publisher.webhook.id
+  notify_on          = ["NEW_VULNERABILITY", "NEW_VULNERABLE_DEPENDENCY"]
+  publisher_config   = jsonencode({ destination = "https://example.com/webhook" })
+}
+
+# Scheduled notification rule for daily vulnerability summary
+resource "dependencytrack_notification_rule" "daily_summary" {
+  name                    = "Daily Vulnerability Summary"
+  scope                   = "PORTFOLIO"
+  notification_level      = "INFORMATIONAL"
+  trigger_type            = "SCHEDULE"
+  publisher_id            = data.dependencytrack_notification_publisher.webhook.id
+  notify_on               = ["NEW_VULNERABILITIES_SUMMARY"]
+  schedule_cron           = "0 8 * * *"
+  schedule_skip_unchanged = true
+  publisher_config        = jsonencode({ destination = "https://example.com/webhook" })
+}

examples/resources/dependencytrack_notification_rule_project/resource.tf

@@ -0,0 +1,5 @@
+# Scope a notification rule to a specific project
+resource "dependencytrack_notification_rule_project" "example" {
+  rule    = dependencytrack_notification_rule.vuln_webhook.id
+  project = dependencytrack_project.example.id
+}