feat: new project spike protection resource

jianyuan · jianyuan · commit 9cff07e64388 · 2023-12-10T00:15:42.000Z
diff --git a/internal/provider/provider.go b/internal/provider/provider.go
@@ -95,6 +95,7 @@ func (p *SentryProvider) Configure(ctx context.Context, req provider.ConfigureRe
 func (p *SentryProvider) Resources(ctx context.Context) []func() resource.Resource {
 	return []func() resource.Resource{
 		NewProjectInboundDataFilterResource,
+		NewProjectSpikeProtectionResource,
 		NewTeamMemberResource,
 	}
 }
diff --git a/internal/provider/resource_project_spike_protection.go b/internal/provider/resource_project_spike_protection.go
@@ -0,0 +1,240 @@
+package provider
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+
+	"github.com/hashicorp/terraform-plugin-framework/path"
+	"github.com/hashicorp/terraform-plugin-framework/resource"
+	"github.com/hashicorp/terraform-plugin-framework/resource/schema"
+	"github.com/hashicorp/terraform-plugin-framework/resource/schema/planmodifier"
+	"github.com/hashicorp/terraform-plugin-framework/resource/schema/stringplanmodifier"
+	"github.com/hashicorp/terraform-plugin-framework/types"
+	"github.com/jianyuan/go-sentry/v2/sentry"
+)
+
+var _ resource.Resource = &ProjectSpikeProtectionResource{}
+var _ resource.ResourceWithImportState = &ProjectSpikeProtectionResource{}
+
+func NewProjectSpikeProtectionResource() resource.Resource {
+	return &ProjectSpikeProtectionResource{}
+}
+
+type ProjectSpikeProtectionResource struct {
+	client *sentry.Client
+}
+
+type ProjectSpikeProtectionResourceModel struct {
+	Id           types.String `tfsdk:"id"`
+	Organization types.String `tfsdk:"organization"`
+	ProjectSlug  types.String `tfsdk:"project_slug"`
+	Enabled      types.Bool   `tfsdk:"enabled"`
+}
+
+func (r *ProjectSpikeProtectionResource) Metadata(ctx context.Context, req resource.MetadataRequest, resp *resource.MetadataResponse) {
+	resp.TypeName = req.ProviderTypeName + "_project_spike_protection"
+}
+
+func (r *ProjectSpikeProtectionResource) Schema(ctx context.Context, req resource.SchemaRequest, resp *resource.SchemaResponse) {
+	resp.Schema = schema.Schema{
+		MarkdownDescription: "Sentry Project Spike Protection resource. This resource is used to create and manage spike protection for a project.",
+
+		Attributes: map[string]schema.Attribute{
+			"id": schema.StringAttribute{
+				Description: "The ID of this resource.",
+				Computed:    true,
+				PlanModifiers: []planmodifier.String{
+					stringplanmodifier.UseStateForUnknown(),
+				},
+			},
+			"organization": schema.StringAttribute{
+				Description: "The slug of the organization the project belongs to.",
+				Required:    true,
+			},
+			"project_slug": schema.StringAttribute{
+				Description: "The slug of the project to create the filter for.",
+				Required:    true,
+			},
+			"enabled": schema.BoolAttribute{
+				Description: "Toggle the browser-extensions, localhost, filtered-transaction, or web-crawlers filter on or off.",
+				Required:    true,
+			},
+		},
+	}
+}
+
+func (r *ProjectSpikeProtectionResource) Configure(ctx context.Context, req resource.ConfigureRequest, resp *resource.ConfigureResponse) {
+	// Prevent panic if the provider has not been configured.
+	if req.ProviderData == nil {
+		return
+	}
+
+	client, ok := req.ProviderData.(*sentry.Client)
+
+	if !ok {
+		resp.Diagnostics.AddError(
+			"Unexpected Resource Configure Type",
+			fmt.Sprintf("Expected *sentry.Client, got: %T. Please report this issue to the provider developers.", req.ProviderData),
+		)
+
+		return
+	}
+
+	r.client = client
+}
+
+func (r *ProjectSpikeProtectionResource) Create(ctx context.Context, req resource.CreateRequest, resp *resource.CreateResponse) {
+	var data ProjectSpikeProtectionResourceModel
+
+	resp.Diagnostics.Append(req.Plan.Get(ctx, &data)...)
+
+	if resp.Diagnostics.HasError() {
+		return
+	}
+
+	if data.Enabled.ValueBool() {
+		_, err := r.client.SpikeProtections.Enable(
+			ctx,
+			data.Organization.ValueString(),
+			&sentry.SpikeProtectionParams{
+				Projects: []string{data.ProjectSlug.ValueString()},
+			},
+		)
+		if err != nil {
+			resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error enabling spike protection: %s", err.Error()))
+			return
+		}
+	} else {
+		_, err := r.client.SpikeProtections.Disable(
+			ctx,
+			data.Organization.ValueString(),
+			&sentry.SpikeProtectionParams{
+				Projects: []string{data.ProjectSlug.ValueString()},
+			},
+		)
+		if err != nil {
+			resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error disabling spike protection: %s", err.Error()))
+			return
+		}
+	}
+
+	data.Id = types.StringValue(buildTwoPartID(data.Organization.ValueString(), data.ProjectSlug.ValueString()))
+
+	resp.Diagnostics.Append(resp.State.Set(ctx, &data)...)
+}
+
+func (r *ProjectSpikeProtectionResource) Read(ctx context.Context, req resource.ReadRequest, resp *resource.ReadResponse) {
+	var data ProjectSpikeProtectionResourceModel
+
+	resp.Diagnostics.Append(req.State.Get(ctx, &data)...)
+
+	if resp.Diagnostics.HasError() {
+		return
+	}
+
+	project, apiResp, err := r.client.Projects.Get(
+		ctx,
+		data.Organization.ValueString(),
+		data.ProjectSlug.ValueString(),
+	)
+	if apiResp.StatusCode == http.StatusNotFound {
+		resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Project not found: %s", err.Error()))
+		resp.State.RemoveResource(ctx)
+		return
+	}
+	if err != nil {
+		resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error reading project: %s", err.Error()))
+		return
+	}
+
+	data.Id = types.StringValue(buildTwoPartID(data.Organization.ValueString(), project.Slug))
+	data.Organization = types.StringPointerValue(project.Organization.Slug)
+	data.ProjectSlug = types.StringValue(project.Slug)
+	if disabled, ok := project.Options["quotas:spike-protection-disabled"].(bool); ok {
+		data.Enabled = types.BoolValue(!disabled)
+	}
+
+	resp.Diagnostics.Append(resp.State.Set(ctx, &data)...)
+}
+
+func (r *ProjectSpikeProtectionResource) Update(ctx context.Context, req resource.UpdateRequest, resp *resource.UpdateResponse) {
+	var data ProjectSpikeProtectionResourceModel
+
+	resp.Diagnostics.Append(req.Plan.Get(ctx, &data)...)
+
+	if resp.Diagnostics.HasError() {
+		return
+	}
+
+	if data.Enabled.ValueBool() {
+		_, err := r.client.SpikeProtections.Enable(
+			ctx,
+			data.Organization.ValueString(),
+			&sentry.SpikeProtectionParams{
+				Projects: []string{data.ProjectSlug.ValueString()},
+			},
+		)
+		if err != nil {
+			resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error enabling spike protection: %s", err.Error()))
+			return
+		}
+	} else {
+		_, err := r.client.SpikeProtections.Disable(
+			ctx,
+			data.Organization.ValueString(),
+			&sentry.SpikeProtectionParams{
+				Projects: []string{data.ProjectSlug.ValueString()},
+			},
+		)
+		if err != nil {
+			resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error disabling spike protection: %s", err.Error()))
+			return
+		}
+	}
+
+	resp.Diagnostics.Append(resp.State.Set(ctx, &data)...)
+}
+
+func (r *ProjectSpikeProtectionResource) Delete(ctx context.Context, req resource.DeleteRequest, resp *resource.DeleteResponse) {
+	var data ProjectSpikeProtectionResourceModel
+
+	resp.Diagnostics.Append(req.State.Get(ctx, &data)...)
+
+	if resp.Diagnostics.HasError() {
+		return
+	}
+
+	apiResp, err := r.client.SpikeProtections.Disable(
+		ctx,
+		data.Organization.ValueString(),
+		&sentry.SpikeProtectionParams{
+			Projects: []string{data.ProjectSlug.ValueString()},
+		},
+	)
+	if apiResp.StatusCode == http.StatusNotFound {
+		return
+	}
+
+	if err != nil {
+		resp.Diagnostics.AddError("Client Error", fmt.Sprintf("Error disabling spike protection: %s", err.Error()))
+		return
+	}
+}
+
+func (r *ProjectSpikeProtectionResource) ImportState(ctx context.Context, req resource.ImportStateRequest, resp *resource.ImportStateResponse) {
+	org, projectSlug, err := splitTwoPartID(req.ID, "organization", "project-slug")
+	if err != nil {
+		resp.Diagnostics.AddError("Invalid ID", fmt.Sprintf("Error parsing ID: %s", err.Error()))
+		return
+	}
+	resp.Diagnostics.Append(resp.State.SetAttribute(
+		ctx, path.Root("organization"), org,
+	)...)
+	resp.Diagnostics.Append(resp.State.SetAttribute(
+		ctx, path.Root("project_slug"), projectSlug,
+	)...)
+	resp.Diagnostics.Append(resp.State.SetAttribute(
+		ctx, path.Root("id"), req.ID,
+	)...)
+}
diff --git a/internal/provider/resource_project_spike_protection_test.go b/internal/provider/resource_project_spike_protection_test.go
@@ -0,0 +1,66 @@
+package provider
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-testing/helper/resource"
+	"github.com/jianyuan/terraform-provider-sentry/internal/acctest"
+)
+
+func TestAccProjectSpikeProtectionResource(t *testing.T) {
+	rn := "sentry_project_spike_protection.test"
+	teamSlug := acctest.RandomWithPrefix("tf-team")
+	projectSlug := acctest.RandomWithPrefix("tf-project")
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:                 func() { acctest.PreCheck(t) },
+		ProtoV5ProviderFactories: testAccProtoV5ProviderFactories,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccProjectSpikeProtectionConfig(teamSlug, projectSlug, true),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr(rn, "organization", acctest.TestOrganization),
+					resource.TestCheckResourceAttr(rn, "project_slug", projectSlug),
+					resource.TestCheckResourceAttr(rn, "enabled", "true"),
+				),
+			},
+			{
+				Config: testAccProjectSpikeProtectionConfig(teamSlug, projectSlug, false),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr(rn, "organization", acctest.TestOrganization),
+					resource.TestCheckResourceAttr(rn, "project_slug", projectSlug),
+					resource.TestCheckResourceAttr(rn, "enabled", "false"),
+				),
+			},
+			{
+				ResourceName:      rn,
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
+		},
+	})
+}
+
+func testAccProjectSpikeProtectionConfig(teamName string, projectName string, enabled bool) string {
+	return testAccOrganizationDataSourceConfig + fmt.Sprintf(`
+resource "sentry_team" "test" {
+  organization = data.sentry_organization.test.id
+  name         = "%[1]s"
+  slug         = "%[1]s"
+}
+
+resource "sentry_project" "test" {
+  organization = sentry_team.test.organization
+  teams        = [sentry_team.test.id]
+  name         = "%[2]s"
+  platform     = "go"
+}
+
+resource "sentry_project_spike_protection" "test" {
+  organization = sentry_project.test.organization
+  project_slug = sentry_project.test.slug
+  enabled      = %[3]t
+}
+`, teamName, projectName, enabled)
+}

Original file line number	Diff line number	Diff line change
`@@ -95,6 +95,7 @@ func (p *SentryProvider) Configure(ctx context.Context, req provider.ConfigureRe`
`95`	`95`	`func (p *SentryProvider) Resources(ctx context.Context) []func() resource.Resource {`
`96`	`96`	`return []func() resource.Resource{`
`97`	`97`	`NewProjectInboundDataFilterResource,`
	`98`	`+ NewProjectSpikeProtectionResource,`
`98`	`99`	`NewTeamMemberResource,`
`99`	`100`	`}`
`100`	`101`	`}`