From 14f33a580892317ecbd927d50e6959ce9c395c84 Mon Sep 17 00:00:00 2001 From: Dawson Hensel Date: Fri, 4 Oct 2024 08:22:09 -0700 Subject: [PATCH] Support SentinelOne's operational_state integration field --- .changelog/4200.txt | 3 +++ docs/resources/device_posture_rule.md | 1 + docs/resources/zero_trust_device_posture_rule.md | 1 + .../resource_cloudflare_device_posture_rule.go | 4 ++++ .../sdkv2provider/schema_cloudflare_device_posture_rule.go | 6 ++++++ 5 files changed, 15 insertions(+) create mode 100644 .changelog/4200.txt diff --git a/.changelog/4200.txt b/.changelog/4200.txt new file mode 100644 index 0000000000..1dc0c9d65f --- /dev/null +++ b/.changelog/4200.txt @@ -0,0 +1,3 @@ +```release-note:enhancement +resource/cloudflare_device_posture_rule: Add support for SentinelOne posture check operational_state field +``` diff --git a/docs/resources/device_posture_rule.md b/docs/resources/device_posture_rule.md index a1a0edcc34..be0c4b189a 100644 --- a/docs/resources/device_posture_rule.md +++ b/docs/resources/device_posture_rule.md @@ -81,6 +81,7 @@ Optional: - `locations` (Block List) List of operating system locations to check for a client certificate.. (see [below for nested schema](#nestedblock--input--locations)) - `network_status` (String) The network status from SentinelOne. Available values: `connected`, `disconnected`, `disconnecting`, `connecting`. - `operator` (String) The version comparison operator. Available values: `>`, `>=`, `<`, `<=`, `==`. +- `operational_state` (String) The current operational state of a SentinelOne Agent. - `os` (String) OS signal score from Crowdstrike. Value must be between 1 and 100. - `os_distro_name` (String) The operating system excluding version information. - `os_distro_revision` (String) The operating system version excluding OS name information or release name. diff --git a/docs/resources/zero_trust_device_posture_rule.md b/docs/resources/zero_trust_device_posture_rule.md index 03ed9341ae..b02d5bc739 100644 --- a/docs/resources/zero_trust_device_posture_rule.md +++ b/docs/resources/zero_trust_device_posture_rule.md @@ -81,6 +81,7 @@ Optional: - `locations` (Block List) List of operating system locations to check for a client certificate.. (see [below for nested schema](#nestedblock--input--locations)) - `network_status` (String) The network status from SentinelOne. Available values: `connected`, `disconnected`, `disconnecting`, `connecting`. - `operator` (String) The version comparison operator. Available values: `>`, `>=`, `<`, `<=`, `==`. +- `operational_state` (String) The current operational state of a SentinelOne Agent. - `os` (String) OS signal score from Crowdstrike. Value must be between 1 and 100. - `os_distro_name` (String) The operating system excluding version information. - `os_distro_revision` (String) The operating system version excluding OS name information or release name. diff --git a/internal/sdkv2provider/resource_cloudflare_device_posture_rule.go b/internal/sdkv2provider/resource_cloudflare_device_posture_rule.go index 815cded771..0c526c135b 100644 --- a/internal/sdkv2provider/resource_cloudflare_device_posture_rule.go +++ b/internal/sdkv2provider/resource_cloudflare_device_posture_rule.go @@ -263,6 +263,9 @@ func setDevicePostureRuleInput(rule *cloudflare.DevicePostureRule, d *schema.Res if activeThreats, ok := d.GetOk("input.0.active_threats"); ok { input.ActiveThreats = activeThreats.(int) } + if operationalState, ok := d.GetOk("input.0.operational_state"); ok { + input.OperationalState = operationalState.(string) + } if networkStatus, ok := d.GetOk("input.0.network_status"); ok { input.NetworkStatus = networkStatus.(string) } @@ -371,6 +374,7 @@ func convertInputToSchema(input cloudflare.DevicePostureRuleInput) []map[string] "certificate_id": input.CertificateID, "cn": input.CommonName, "active_threats": input.ActiveThreats, + "operational_state": input.OperationalState, "network_status": input.NetworkStatus, "infected": input.Infected, "is_active": input.IsActive, diff --git a/internal/sdkv2provider/schema_cloudflare_device_posture_rule.go b/internal/sdkv2provider/schema_cloudflare_device_posture_rule.go index 89d7a5acae..eae6fd6c2d 100644 --- a/internal/sdkv2provider/schema_cloudflare_device_posture_rule.go +++ b/internal/sdkv2provider/schema_cloudflare_device_posture_rule.go @@ -217,6 +217,12 @@ func resourceCloudflareDevicePostureRuleSchema() map[string]*schema.Schema { Optional: true, Description: "The number of active threats from SentinelOne.", }, + "operational_state": { + Type: schema.TypeString, + Optional: true, + ValidateFunc: validation.StringInSlice([]string{"na", "partially_disabled", "auto_fully_disabled", "fully_disabled", "auto_partially_disabled", "disabled_error", "db_corruption"}, true), + Description: fmt.Sprintf("The current operational state of a SentinelOne Agent. %s", renderAvailableDocumentationValuesStringSlice([]string{"na", "partially_disabled", "auto_fully_disabled", "fully_disabled", "auto_partially_disabled", "disabled_error", "db_corruption"})), + }, "network_status": { Type: schema.TypeString, Optional: true,