Merge pull request #313 from vmware/vmware/otaylor/aks-kubeconfig

Vmware/otaylor/aks kubeconfig

Author: grenader

docs/data-sources/akscluster.md

@@ -56,10 +56,12 @@ output "location" {
 - `meta` (Block List, Max: 1) Metadata for the resource (see [below for nested schema](#nestedblock--meta))
 - `ready_wait_timeout` (String) Wait timeout duration until cluster resource reaches READY state. Accepted timeout duration values like 5s, 45m, or 3h, higher than zero.  The default duration is 30m
 - `spec` (Block List, Max: 1) Spec for the cluster (see [below for nested schema](#nestedblock--spec))
+- `wait_for_kubeconfig` (Boolean) Wait until pinniped extension is ready to provide kubeconfig
 
 ### Read-Only
 
 - `id` (String) The ID of this resource.
+- `kubeconfig` (String) Kubeconfig for connecting to newly created cluster base64 encoded. This will only be returned if you have elected to wait for kubeconfig.
 
 <a id="nestedblock--meta"></a>
 ### Nested Schema for `meta`

docs/resources/akscluster.md

@@ -92,10 +92,12 @@ resource "tanzu-mission-control_akscluster" "demo_AKS_cluster" {
 
 - `meta` (Block List, Max: 1) Metadata for the resource (see [below for nested schema](#nestedblock--meta))
 - `ready_wait_timeout` (String) Wait timeout duration until cluster resource reaches READY state. Accepted timeout duration values like 5s, 45m, or 3h, higher than zero.  The default duration is 30m
+- `wait_for_kubeconfig` (Boolean) Wait until pinniped extension is ready to provide kubeconfig
 
 ### Read-Only
 
 - `id` (String) The ID of this resource.
+- `kubeconfig` (String) Kubeconfig for connecting to newly created cluster base64 encoded. This will only be returned if you have elected to wait for kubeconfig.
 
 <a id="nestedblock--spec"></a>
 ### Nested Schema for `spec`

examples/resources/mutation_policy/resource_cluster_group_scoped_annotation_mutation_policy.tf

@@ -30,7 +30,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_group_annotation_mutat
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_cluster_group_scoped_label_mutation_policy.tf

@@ -30,7 +30,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_group_label_mutation_p
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_cluster_group_scoped_pod_security_mutation_policy.tf

@@ -64,7 +64,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_group_pod_security_mut
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_cluster_scoped_annotation_mutation_policy.tf

@@ -31,7 +31,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_annotation_mutation_po
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_cluster_scoped_label_mutation_policy.tf

@@ -32,7 +32,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_label_mutation_policy"
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_cluster_scoped_pod_security_mutation_policy.tf

@@ -66,7 +66,7 @@ resource "tanzu-mission-control_mutation_policy" "cluster_pod_security_mutation_
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_organization_scoped_annotation_mutation_policy.tf

@@ -30,7 +30,7 @@ resource "tanzu-mission-control_mutation_policy" "org_annotation_mutation_policy
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_organization_scoped_label_mutation_policy.tf

@@ -30,7 +30,7 @@ resource "tanzu-mission-control_mutation_policy" "org_label_mutation_policy" {
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

examples/resources/mutation_policy/resource_organization_scoped_pod_security_mutation_policy.tf

@@ -64,7 +64,7 @@ resource "tanzu-mission-control_mutation_policy" "org_pod_security_mutation_poli
         {
           key      = "component"
           operator = "NotIn"
-          values   = [
+          values = [
             "api-server",
             "agent-gateway"
           ]

internal/client/http_client.go

@@ -38,6 +38,7 @@ import (
 	eksclusterclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/ekscluster"
 	eksnodepoolclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/ekscluster/nodepool"
 	integrationclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/integration"
+	kubeconfigclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/kubeconfig"
 	secretclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/kubernetessecret"
 	secretexportclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/kubernetessecret/secretexport"
 	namespaceclient "github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/namespace"
@@ -128,6 +129,7 @@ func newHTTPClient(httpClient *transport.Client) *TanzuMissionControl {
 		OrganizationHelmChartsResourceService:         helmchartsorgclient.New(httpClient),
 		ClusterGroupSecretResourceService:             secretclustergroupclient.New(httpClient),
 		ClusterGroupSecretExportResourceService:       secretexportclustergroupclient.New(httpClient),
+		KubeConfigResourceService:                     kubeconfigclient.New(httpClient),
 	}
 }
 
@@ -178,4 +180,5 @@ type TanzuMissionControl struct {
 	OrganizationHelmChartsResourceService         helmchartsorgclient.ClientService
 	ClusterGroupSecretResourceService             secretclustergroupclient.ClientService
 	ClusterGroupSecretExportResourceService       secretexportclustergroupclient.ClientService
+	KubeConfigResourceService                     kubeconfigclient.ClientService
 }

internal/client/kubeconfig/kubeconfig_service_client.go

@@ -0,0 +1,61 @@
+/*
+Copyright 2023 VMware, Inc. All Rights Reserved.
+SPDX-License-Identifier: MPL-2.0
+*/
+
+package kubeconfig
+
+import (
+	"net/url"
+
+	"github.com/vmware/terraform-provider-tanzu-mission-control/internal/client/transport"
+	"github.com/vmware/terraform-provider-tanzu-mission-control/internal/helper"
+	models "github.com/vmware/terraform-provider-tanzu-mission-control/internal/models/kubeconfig"
+)
+
+const (
+	apiVersionAndGroup                         = "/v1alpha1/clusters"
+	apiKubeconfigPath                          = "kubeconfig"
+	queryParamKeyFullNameManagementClusterName = "full_name.managementClusterName"
+	queryParamKeyFullNameProvisionerName       = "full_name.provisionerName"
+)
+
+// New creates a new kubeconfig service API client.
+func New(transport *transport.Client) ClientService {
+	return &Client{Client: transport}
+}
+
+/*
+Client for kubeconfig service API.
+*/
+type Client struct {
+	*transport.Client
+}
+
+// ClientService is the interface for Client methods.
+type ClientService interface {
+	KubeconfigServiceGet(fn *models.VmwareTanzuManageV1alpha1ClusterFullName) (*models.VmwareTanzuManageV1alpha1ClusterKubeconfigGetKubeconfigResponse, error)
+}
+
+/*
+KubeconfigServiceGet gets cluster kubeconfig.
+*/
+func (c *Client) KubeconfigServiceGet(fn *models.VmwareTanzuManageV1alpha1ClusterFullName) (*models.VmwareTanzuManageV1alpha1ClusterKubeconfigGetKubeconfigResponse, error) {
+	queryParams := url.Values{}
+	if fn.ManagementClusterName != "" {
+		queryParams.Add(queryParamKeyFullNameManagementClusterName, fn.ManagementClusterName)
+	}
+
+	if fn.ProvisionerName != "" {
+		queryParams.Add(queryParamKeyFullNameProvisionerName, fn.ProvisionerName)
+	}
+
+	queryParams.Add("cli", string(models.VmwareTanzuManageV1alpha1ClusterKubeconfigCliTypeTANZUCLI))
+
+	requestURL := helper.ConstructRequestURL(apiVersionAndGroup, fn.Name, apiKubeconfigPath).AppendQueryParams(queryParams).String()
+	clusterResponse := &models.VmwareTanzuManageV1alpha1ClusterKubeconfigGetKubeconfigResponse{}
+
+	err := c.Get(requestURL, clusterResponse)
+
+	return clusterResponse, err
+}

internal/models/credential/spec.go

@@ -0,0 +1,45 @@
+/*
+Copyright 2023 VMware, Inc. All Rights Reserved.
+SPDX-License-Identifier: MPL-2.0
+*/
+
+package models
+
+import (
+	"github.com/go-openapi/strfmt"
+	"github.com/go-openapi/swag"
+)
+
+// GoogleProtobufAny google protobuf any
+//
+// swagger:model google.protobuf.Any
+type GoogleProtobufAny struct {
+
+	// type Url
+	TypeURL string `json:"typeUrl,omitempty"`
+
+	// value
+	// Format: byte
+	Value strfmt.Base64 `json:"value,omitempty"`
+}
+
+// MarshalBinary interface implementation.
+func (m *GoogleProtobufAny) MarshalBinary() ([]byte, error) {
+	if m == nil {
+		return nil, nil
+	}
+
+	return swag.WriteJSON(m)
+}
+
+// UnmarshalBinary interface implementation.
+func (m *GoogleProtobufAny) UnmarshalBinary(b []byte) error {
+	var res GoogleProtobufAny
+	if err := swag.ReadJSON(b, &res); err != nil {
+		return err
+	}
+
+	*m = res
+
+	return nil
+}

internal/models/credential/spec_data.go

@@ -0,0 +1,49 @@
+/*
+Copyright 2023 VMware, Inc. All Rights Reserved.
+SPDX-License-Identifier: MPL-2.0
+*/
+
+package models
+
+import (
+	"github.com/go-openapi/swag"
+)
+
+// GrpcGatewayRuntimeError grpc gateway runtime error
+//
+// swagger:model grpc.gateway.runtime.Error
+type GrpcGatewayRuntimeError struct {
+
+	// code
+	Code int32 `json:"code,omitempty"`
+
+	// details
+	Details []*GoogleProtobufAny `json:"details"`
+
+	// error
+	Error string `json:"error,omitempty"`
+
+	// message
+	Message string `json:"message,omitempty"`
+}
+
+// MarshalBinary interface implementation.
+func (m *GrpcGatewayRuntimeError) MarshalBinary() ([]byte, error) {
+	if m == nil {
+		return nil, nil
+	}
+
+	return swag.WriteJSON(m)
+}
+
+// UnmarshalBinary interface implementation.
+func (m *GrpcGatewayRuntimeError) UnmarshalBinary(b []byte) error {
+	var res GrpcGatewayRuntimeError
+	if err := swag.ReadJSON(b, &res); err != nil {
+		return err
+	}
+
+	*m = res
+
+	return nil
+}

internal/models/credential/status.go

@@ -0,0 +1,50 @@
+/*
+Copyright 2023 VMware, Inc. All Rights Reserved.
+SPDX-License-Identifier: MPL-2.0
+*/
+
+package models
+
+import (
+	"github.com/go-openapi/swag"
+)
+
+// VmwareTanzuManageV1alpha1ClusterFullName Full name of the cluster. This includes the object name along
+// with any parents or further identifiers.
+//
+// swagger:model vmware.tanzu.manage.v1alpha1.cluster.FullName
+type VmwareTanzuManageV1alpha1ClusterFullName struct {
+
+	// Name of the management cluster.
+	ManagementClusterName string `json:"managementClusterName,omitempty"`
+
+	// Name of this cluster.
+	Name string `json:"name,omitempty"`
+
+	// ID of Organization.
+	OrgID string `json:"orgId,omitempty"`
+
+	// Provisioner of the cluster.
+	ProvisionerName string `json:"provisionerName,omitempty"`
+}
+
+// MarshalBinary interface implementation.
+func (m *VmwareTanzuManageV1alpha1ClusterFullName) MarshalBinary() ([]byte, error) {
+	if m == nil {
+		return nil, nil
+	}
+
+	return swag.WriteJSON(m)
+}
+
+// UnmarshalBinary interface implementation.
+func (m *VmwareTanzuManageV1alpha1ClusterFullName) UnmarshalBinary(b []byte) error {
+	var res VmwareTanzuManageV1alpha1ClusterFullName
+	if err := swag.ReadJSON(b, &res); err != nil {
+		return err
+	}
+
+	*m = res
+
+	return nil
+}